picasa3.exe

Picasa Updater

Google Inc.

This is a setup program which is used to install the application. The file has been seen being downloaded from picasa.software.informer.com and multiple other hosts.
Publisher:
Google Inc.  (signed and verified)

Product:
Picasa Updater

Description:
Picasa

Version:
3.1.71.480

MD5:
f1105fc210eeaee32cf466ca1d32bb23

SHA-1:
1e397b2c680314388881190481de049ff3f0efb0

SHA-256:
0be8ecd48467439c51dcb62a60b3387f352e94ceca812fdf74f2deb54e56d90d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 3:00:34 AM UTC  (today)

File size:
9.1 MB (9,496,056 bytes)

Product version:
3.1.0

Copyright:
© 2004-2009 Google Inc.

Original file name:
Picasa Updater

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\picasa3.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
6/4/2008 3:00:00 AM

Valid to:
6/19/2011 2:59:59 AM

Subject:
CN=Google Inc., OU=Digital ID Class 3 - Netscape Object Signing, O=Google Inc., L=Mountain View, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6A922A0E85880B88326D3A368503C138

File PE Metadata
Compilation timestamp:
1/9/2010 12:40:30 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
196608:cljZ3M0inyTA/aKO++JxX2hVPPMu6DBJPWJLZjL+Fv06112NgN4G9x/h:cH80inHSL++JWPn6DBJeJLZj5UAN2r5

Entry address:
0x6862

Entry point:
E8, 1B, 4B, 00, 00, E9, 16, FE, FF, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 88, 94, 41, 00, 89, 0D, 84, 94, 41, 00, 89, 15, 80, 94, 41, 00, 89, 1D, 7C, 94, 41, 00, 89, 35, 78, 94, 41, 00, 89, 3D, 74, 94, 41, 00, 66, 8C, 15, A0, 94, 41, 00, 66, 8C, 0D, 94, 94, 41, 00, 66, 8C, 1D, 70, 94, 41, 00, 66, 8C, 05, 6C, 94, 41, 00, 66, 8C, 25, 68, 94, 41, 00, 66, 8C, 2D, 64, 94, 41, 00, 9C, 8F, 05, 98, 94, 41, 00, 8B, 45, 00, A3, 8C, 94, 41, 00, 8B, 45, 04, A3, 90, 94, 41, 00, 8D, 45, 08, A3, 9C, 94, 41, 00, 8B...
 
[+]

Entropy:
7.9865  (probably packed)

Code size:
72 KB (73,728 bytes)

The file picasa3.exe has been seen being distributed by the following 3 URLs.

http://212.143.197.6/cache/.../picasa3-setup.exe