home

powarc1001.exe

PowerArchiver 2007 Setup

ConeXware Inc.

This is a setup and installation application. The file has been seen being downloaded from dl.powerarchiver.com.
Publisher:
ConeXware Inc.

Product:
PowerArchiver 2007 Setup

Version:
10.00

MD5:
ae99a457c15f188356cbdba2cd66b6a0

SHA-1:
18cd7265cf54a01cca64790e55aaa55fc0e91fb6

SHA-256:
bbe365a99659cc131013c5be0c302af23d9d496c70a2f45416be4d024ba4eb5a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 5:43:22 AM UTC  (today)

File size:
1.5 MB (1,535,982 bytes)

Product version:
10.00

Copyright:
Copyright (c) ConeXware, Inc. 7-ZIP Copyright (c) 1999-2007 Igor Pavlov

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\powarc1001.exe

File PE Metadata
Compilation timestamp:
1/4/2007 11:32:53 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
24576:viM1bRJeQ4b40QnBO68M//WqG+M+BAkg+rMRKrIkuanu+nCsXuHIf3yLvJx90YAt:vlRJL4bynBcM//WqGh+BAP+F1nvUU3kM

Entry address:
0x27420

Entry point:
F3, 0F, BF, DB, 34, 33, 74, 04, FF, C0, 84, F2, 3C, 31, 14, 4C, 85, F2, B4, CB, 35, B7, B9, 9F, C3, F6, C4, 37, 68, 15, 73, 46, 00, 68, B6, A6, CE, 00, C7, C5, DC, DA, 98, 68, E8, 25, 00, 00, 00, 0F, BE, C3, 8D, 2D, B7, 21, 5E, F0, 25, 86, 00, FE, 15, 80, EA, 1C, 84, CD, 02, C1, 87, C6, 81, C1, 67, 0C, 00, 00, FE, C8, 81, C1, 1E, 0C, 00, 00, 89, D3, 85, D7, 78, 02, 12, DC, F2, 03, C2, EB, 02, 88, E7, 58, EB, 0A, C7, C5, 43, 39, 5C, 9D, 38, ED, 1A, D8, 45, F2, 89, D5, B3, D0, 0F, AF, C8, 68, 02, EE, 45, 00...
 
[+]

Entropy:
7.9945  (probably packed)

Code size:
56 KB (57,344 bytes)

The file powarc1001.exe has been seen being distributed by the following URL.

http://dl.powerarchiver.com/.../powarc1001.exe

Scan powarc1001.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.