rufus-2.9.exe

Rufus

Akeo Consulting

This is a setup program which is used to install the application. The file has been seen being downloaded from docs.google.com and multiple other hosts.
Publisher:
Akeo Consulting (http://akeo.ie)  (signed by Akeo Consulting)

Product:
Rufus

Version:
2.9.934

MD5:
8f5fd2a920f4d3c95e5eabd47ac40a81

SHA-1:
aae8a0389f853776adb43482a6a2a12712b70917

SHA-256:
346e869f0c2b22ada8ccd2516a5c8917b17cbb09bf16d33e74d9559e611753ad

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 1:28:32 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
Malware.Generic!vBXwnzMJbPG@5 (Thunder)
23.00.65.16515

File size:
910.8 KB (932,608 bytes)

Product version:
2.9.934

Copyright:
© 2011-2016 Pete Batard (GPL v3)

Trademarks:
http://www.gnu.org/copyleft/gpl.html

Original file name:
rufus.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\rufus-2.9.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
11/12/2012 4:00:00 AM

Valid to:
11/13/2017 3:59:59 AM

Subject:
CN=Akeo Consulting, O=Akeo Consulting, STREET="24, Grey Rock", L=Milford, S=Co. Donegal, PostalCode=Co. Donegal, C=IE

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
47D73D146614770CB3DAAF5502C48D9C

File PE Metadata
OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:8lmXiN6oWX83Hnq/pRwbgo3MsYDUpLr4fvJ81W:8QXs9WX8n0BGYDBXV

Entry address:
0x2A9BC0

Entry point:
60, BE, 15, 40, 5D, 00, 8D, BE, EB, CF, E2, FF, 57, 89, E5, 8D, 9C, 24, 80, C1, FF, FF, 31, C0, 50, 39, DC, 75, FB, 46, 46, 53, 68, 8F, 79, 2A, 00, 57, 83, C3, 04, 53, 68, A7, 5B, 0D, 00, 56, 83, C3, 04, 53, 50, C7, 03, 03, 00, 02, 00, 90, 90, 90, 90, 90, 55, 57, 56, 53, 83, EC, 7C, 8B, 94, 24, 90, 00, 00, 00, C7, 44, 24, 74, 00, 00, 00, 00, C6, 44, 24, 73, 00, 8B, AC, 24, 9C, 00, 00, 00, 8D, 42, 04, 89, 44, 24, 78, B8, 01, 00, 00, 00, 0F, B6, 4A, 02, 89, C3, D3, E3, 89, D9, 49, 89, 4C, 24, 6C, 0F, B6, 4A...
 
[+]

Entropy:
7.9471  (probably packed)

Code size:
860 KB (880,640 bytes)

The file rufus-2.9.exe has been seen being distributed by the following 50 URLs.

https://docs.google.com/uc?authuser=0&id=0ByHcil4q32mxT25BQkVzdHlOQ0k&export=download

https://docs.google.com/uc?authuser=0&id=0B7Km-zu6zK6JRlluNXFDNFo1LWc&export=download

https://up.harajgulf.com/do.php?down=1394815

http://low.software.dn.naver.com/f4b6ad4977ab8009690176bd4ebbf8c8/.../rufus-2.9.exe

https://doc-0g-b4-docs.googleusercontent.com/docs/securesc/34u1tve3om75vu6929lsakkkoo8f6i4q/a8urkc15nr9fut4hvs5jfaflmov2foe3/1478649600000/00380213861317843364/.../0B2wXz089GBXCTnJiWWxtUDZsakk?e=download

http://www.downloadcrew.com/?act=software.download&id=30840&t=1466417105&c=b5c39401b5c40c4dff85768e4a049dfd92fd1c66

http://www.filehorse.com/download/file/.../

http://s03.mydiv-downloads.net/download/aHR0cDovL3NvZnQubXlkaXYubmV0L3dpbi9kb3dubG9hZC1SdWZ1cy5odG1s/db93f/578f97233f4d4/soft/dfiles/ru/win/Rufus/.../rufus-2.9.exe

http://10.185.203.61:8080/repository/corporate/.../rufus-2.9.exe

temp:rufus-2.9p.exe

http://rufus1.software.informer.com/.../

http://download7.fileeagle.com/files/2016/.../rufus-2.9.exe

http://d210.cdn.m6web.fr/soft/.../rufus_2-9-934_fr_430321.exe

https://doc-0o-3k-docs.googleusercontent.com/docs/securesc/k1ov0gkh5n5stdmj2h5j5093nu6cjjfp/civcqgebdm7r33ek5ru8lll92s93okc2/1481536800000/.../17705887384674704087/0BwcHAI7pmTTlS01vYnQ1cEF0YnM?e=download

https://ceabr-my.sharepoint.com/personal/leonardo_almeida_cea_com_br/Documents/.../rufus-2.9.exe

http://www.filehorse.com/download/file/.../

http://download.ksplus.komputerswiat.pl/ftp/a568652fa9da7ed38c7b1035bd879c942509defa083b570eae807036899fd229/link_xp32/3146/programy/Rufus/.../rufus-2.9p.exe

http://www.techspot.com/downloads/downloadnow/.../?evp=533110cc46ed5462825eedd275dcf170&file=1

http://high.software.dn.naver.com/f4b6ad4977ab8009690176bd4ebbf8c8/.../rufus-2.9.exe

http://download.freedownloadmanager.org/Windows-PC/.../FREE-2.9.934.html?ac57843

http://www.techspot.com/downloads/downloadnow/.../?evp=3115be3dc4f0f02c34329181d024cb49&file=1

http://www.filedropper.com/.../filedownload.php?id=rufus-29

about:internet

http://www.techspot.com/downloads/downloadnow/.../?evp=f454bbb5878a139050ef822035edb098&file=1

http://www.techspot.com/downloads/downloadnow/.../?evp=6619262a543df7d9d72e70e6e51e4e78&file=1

http://www.softportal.com/getsoft-30994-rufus-2.html

http://www.techspot.com/downloads/downloadnow/.../?evp=17d2ef3e8580987b69af76cb1de67a71&file=1

http://www.filehorse.com/download/file/.../

http://www.techspot.com/downloads/downloadnow/.../?evp=6c8065dabaf305a1353b22f5790fdf53&file=1

Latest 30 of 64 download URLs

Scan rufus-2.9.exe - Powered by Reason Core Security