poweriso6-x64.exe

PowerISO Setup

Power Software Limited

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from indir.gezginler.net and multiple other hosts.
Publisher:
Power Software Ltd  (signed by Power Software Limited)

Product:
PowerISO Setup

Version:
6.5.0.0

MD5:
ac0e1f397e59d00951e0678a91e9c03c

SHA-1:
6d8e0c189805b3a99050f9bfaa906f1f230dce48

SHA-256:
b852ef1a47d62ed253326a33612a6c77fb98f708e90c843c3dd157124916f173

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

False Positives:
A number of engines detected this file but were erroneous detections (false positives).

Analysis date:
11/16/2024 11:50:10 PM UTC  (a few moments ago)

File size:
2.6 MB (2,764,576 bytes)

Product version:
6.5.0.0

Copyright:
Copyright(c) 2004-2016

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
English (United States)

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
3/27/2014 2:00:00 AM

Valid to:
6/26/2017 1:59:59 AM

Subject:
CN=Power Software Limited, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Power Software Limited, L=Hong Kong, S=Hong Kong, C=HK

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
227EFDF22825BA270530FB09D52B32F8

File PE Metadata
Compilation timestamp:
12/6/2009 12:50:46 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:bbfxVtXZmVc9YNEuLBSaGe4JuXM8UQG3z2YRW6u7hlp8vAJLh6Oc:bNfZmiqELIXOj3FRWTjpMAnXc

Entry address:
0x323C

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 58, 3F, 42, 00, E8, 09, 2C, 00, 00, A3, A4, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 58, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, A0, 36, 42, 00, E8, BC, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, AA, 28, 00, 00...
 
[+]

Entropy:
7.9932

Packer / compiler:
Nullsoft install system v2.x

Code size:
23 KB (23,552 bytes)

The file poweriso6-x64.exe has been seen being distributed by the following 47 URLs.

http://indir.gezginler.net/i/17309/31373330395f323031362d31302d3130/.../

http://indir.gezginler.net/i/17309/31373330395f323031362d30372d3131/.../

http://indir.gezginler.net/i/17309/31373330395f323031362d30372d3130/.../

http://indir.gezginler.net/i/17309/31373330395f323031372d30312d3035/.../

http://indir.gezginler.net/i/17309/31373330395f323031362d31312d3038/.../

http://indir.gezginler.net/i/17309/31373330395f323031362d30362d3035/.../

http://lb.cdn.m6web.fr/d/c/a/c817c346956a7904daccfd57b16755d3/57e7a000/soft/.../poweriso_6-6_fr_43110_64.exe

temp:PowerISO6-x64.exe

http://indir.gezginler.net/i/17309/31373330395f323031362d31312d3130/.../

http://indir.gezginler.net/i/17309/31373330395f323031362d31322d3232/.../

http://indir.gezginler.net/i/17309/31373330395f323031362d31322d3035/.../

http://www.poweriso.net//PowerISO6-x64.exe

http://indir.gezginler.net/i/17309/31373330395f323031362d31302d3139/.../

http://lb.cdn.m6web.fr/d/c/a/9c47cd373e741b3da1bf8c54f0e52f96/5820558d/soft/.../poweriso_6-6_fr_43110_64.exe

http://indir.gezginler.net/i/17309/31373330395f323031362d31302d3238/.../

http://d210.cdn.m6web.fr/soft/.../poweriso_6-6_fr_43110_64.exe

http://indir.gezginler.net/i/17309/31373330395f323031362d30352d3132/.../

http://lb.cdn.m6web.fr/d/c/a/e5de0b2f637e0f3d651fef97c140498d/57f65541/soft/.../poweriso_6-6_fr_43110_64.exe

http://indir.gezginler.net/i/17309/31373330395f323031362d30392d3033/.../

http://indir.gezginler.net/i/17309/31373330395f323031362d31302d3234/.../

http://indir.gezginler.net/i/17309/31373330395f323031362d30362d3034/x64//

http://indir.gezginler.net/i/17309/31373330395f323031362d31322d3131/.../

http://lb.cdn.m6web.fr/d/c/a/f534baa459e1b541b0d73e165c328ffd/580bad3f/soft/.../poweriso_6-6_fr_43110_64.exe

http://www.presentnowcity.com/ 8i0gLcUEtUJXCKxvYIxAvafKm9GIrNGiX4RUVpb0wJW APy_36uuMfxkuWv9uL QnEwV8XaFWhDUHcSBPfSO9tJtWMSK7iqRx2zcGEKSpnCWNQsy5mhna7It28 beNsczN3e1uKfiRmbzc7JBkokhtJWpJq7Ak8hX5Wid0k4rLMyifQZEo=-G1EAAGTcXGs0k8TI8vu6O2zAgVOZBGQD4LAxdq7gcRc1FhTqzuEX4o7biytTqARslx9zQihkSqhKQK0oVUTpsQLTzs3nP3OCeT_711A=-e

http://www.deliveryhostingfiles.com/c?x=LcKJ5AnjF9kC6qu2vvHyVOVn5wS C5JA675 G/GjOEY=&c=zWatSp/VF2PoJk9autfs3AqRmaytLCFzUR5VQLAmeym9x/snqQH83DthQURczRSrj2BfWFRovtmPIA425tUkbMr0Xs14dL yYNI5bWP1guYvX8r0iEaQMxNCs0qo90S3htVjToqAnx85ZonPQQZFTA==&e=0&downloadAs=PowerISO6-x64.exe&fallback_url=http://download.cnet.com/.../3001-2646_4-76116067.html?hasJs=n&hlndr=1

http://indir.gezginler.net/i/17309/31373330395f323031362d30352d3138/.../

http://lb.cdn.m6web.fr/d/c/a/3e69d8f967cd0b40226d02e1e7d1e4e2/57d9cfdb/soft/.../poweriso_6-6_fr_43110_64.exe

Latest 30 of 47 download URLs