pesedit.com 2013 patch 3.5 + 3.5.1 fix-torrent.exe

Universal Extractor

Geokta

The application pesedit.com 2013 patch 3.5 + 3.5.1 fix-torrent.exe, “Install Engine ” by Geokta has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup and installation application and has been known to bundle potentially unwanted software. It is also typically executed from the user's temporary directory.
Publisher:
Jared Breland (Modified by gora)   (signed by Geokta)

Product:
Universal Extractor

Description:
Install Engine

Version:
1.7.9.95

MD5:
b14881e543b220b77a0bf4cdacf11e92

SHA-1:
301d5899a4455ebea8355d2f4e13099e003fee58

SHA-256:
5016934f6ac6cdca03ad55f26d4db51a8c4914035477ba70fcdedc48e3dffdcc

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
12/25/2024 6:31:25 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.FileTour (M)
17.3.12.19

File size:
692.4 KB (708,992 bytes)

Product version:
1.7.9.95

Copyright:
GNU General Public License v2

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\pesedit.com 2013 patch 3.5 + 3.5.1 fix-torrent.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
12/22/2014 3:00:00 AM

Valid to:
12/23/2015 2:59:59 AM

Subject:
CN=Geokta, O=Geokta, STREET=Tkatchkaya 1, L=Moscow, S=Moscow, PostalCode=105187, C=RU

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
3FAFBBC1A3D77DA1A744A0D2EE296741

File PE Metadata
Compilation timestamp:
6/20/1992 1:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x105896

Entry point:
55, C7, 04, 24, A7, 22, 56, CD, E9, 14, 36, 00, 00, 00, 00, 53, 68, 6F, 77, 57, 69, 6E, 64, 6F, 77, 00, 00, 00, 55, 6E, 68, 6F, 6F, 6B, 57, 69, 6E, 64, 6F, 77, 73, 48, 6F, 6F, 6B, 45, 78, 00, 00, 00, 47, 65, 74, 57, 69, 6E, 64, 6F, 77, 54, 65, 78, 74, 41, 00, EA, FA, 48, 6D, 5B, 95, C3, CF, 6B, 70, 6E, 9A, D4, 67, FC, A7, 76, EA, D9, 14, 63, 37, A6, 3F, CD, 5C, 4B, 57, 86, 02, B1, 3E, EC, 68, 17, A6, 95, 66, B4, 5A, 28, 34, 2C, 5A, 66, 7A, 88, F5, F2, E5, 56, 75, EF, 3D, 49, 0E, A4, DE, 53, BF, 95, 03, 0F...
 
[+]

Code size:
896 KB (917,504 bytes)