picasa39-setup.exe

Picasa Updater

Google Inc.

This is a self-extracting archive and installer. The file has been seen being downloaded from pf.toggle.com and multiple other hosts.
Publisher:
Google Inc.  (signed and verified)

Product:
Picasa Updater

Description:
Picasa

Version:
3.9.136.040

MD5:
0086e4b1ac2524b791e39ffcacf6b15e

SHA-1:
8ab5df89296ba4ece5772de9aa7d750fe9c2991a

SHA-256:
7bdebc10a192c0afe97afcfb06b7871e63095411a3780e6afff29c4b82bc7f9b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 1:22:01 PM UTC  (today)

File size:
14.6 MB (15,267,728 bytes)

Product version:
3.9.0

Copyright:
© 2004-2011 Google Inc.

Original file name:
Picasa Updater

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\picasa39-setup.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
6/20/2011 7:00:00 PM

Valid to:
6/20/2013 6:59:59 PM

Subject:
CN=Google Inc., OU=Digital ID Class 3 - Java Object Signing, OU=Digital ID Class 3 - Java Object Signing, O=Google Inc., L=Mountain View, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0D33F28709E263DE83AFFD883E39B912

File PE Metadata
Compilation timestamp:
5/24/2012 4:07:07 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
393216:+HPP0H32RvbecsjuuMlM1KnyIkh5ESaettI1fxGGXvWOFt:+HPP0Ob4jFMmCtSP+fEcWOP

Entry address:
0x69B7

Entry point:
E8, 28, 4B, 00, 00, E9, 16, FE, FF, FF, 8B, 44, 24, 04, 33, C9, 3B, 04, CD, 70, 80, 41, 00, 74, 12, 41, 83, F9, 2D, 72, F1, 8D, 48, ED, 83, F9, 11, 77, 0C, 6A, 0D, 58, C3, 8B, 04, CD, 74, 80, 41, 00, C3, 05, 44, FF, FF, FF, 6A, 0E, 59, 3B, C8, 1B, C0, 23, C1, 83, C0, 08, C3, E8, 34, 24, 00, 00, 85, C0, 75, 06, B8, D8, 81, 41, 00, C3, 83, C0, 08, C3, E8, 21, 24, 00, 00, 85, C0, 75, 06, B8, DC, 81, 41, 00, C3, 83, C0, 0C, C3, 56, E8, E7, FF, FF, FF, 8B, 4C, 24, 08, 51, 89, 08, E8, 8D, FF, FF, FF, 59, 8B, F0...
 
[+]

Entropy:
7.9941  (probably packed)

Code size:
72 KB (73,728 bytes)

The file picasa39-setup.exe has been discovered within the following program.

360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
 
Powered by Should I Remove It?

The file picasa39-setup.exe has been seen being distributed by the following 13 URLs.

http://pf.toggle.com/s/3/.../30166-671943-google-picasa.exe

http://1.csillagpor.hu/picasa-setup.exe

http://fs37.filehippo.com/5969/.../picasa39-setup.exe

https://dl.google.com/.../picasa39-setup.exe

about:internet