rufus_v1.3.2.exe

Rufus

Akeo Consulting

This is a setup program which is used to install the application. The file has been seen being downloaded from download1589.mediafire.com and multiple other hosts.
Publisher:
Akeo Consulting (http://akeo.ie)  (signed by Akeo Consulting)

Product:
Rufus

Version:
1.3.2.232

MD5:
a248197def7e6f94079420e082057176

SHA-1:
9780642a46bae5f7edac05e040e97dd46c1e0243

SHA-256:
a33244c9c3ba3c8ff97748044dc26a9127b09023f5baef7da9bbd211a77af6e2

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/26/2024 10:53:24 AM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
TROJ_GEN.F47V0610
7.2.365

File size:
442.4 KB (453,048 bytes)

Product version:
1.3.2.232

Copyright:
(c) 2011-2012 Pete Batard (GPL v3)

Trademarks:
http://www.gnu.org/copyleft/gpl.html

Original file name:
rufus.exe

File type:
Executable application (Win32 EXE)

Language:
English

Common path:
C:\users\{user}\downloads\rufus_v1.3.2.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
11/12/2012 1:00:00 AM

Valid to:
11/13/2017 12:59:59 AM

Subject:
CN=Akeo Consulting, O=Akeo Consulting, STREET="24, Grey Rock", L=Milford, S=Co. Donegal, PostalCode=Co. Donegal, C=IE

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
47D73D146614770CB3DAAF5502C48D9C

File PE Metadata
Compilation timestamp:
1/27/2013 10:03:32 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.22

CTPH (ssdeep):
12288:aVe7InmfVGOgFnflzPYmYT0taeigSMLqPW0CVtaqQGMG:a6fulTY94t6W0kGNG

Entry address:
0xC7160

Entry point:
60, BE, 15, 00, 46, 00, 8D, BE, EB, 0F, FA, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89...
 
[+]

Packer / compiler:
UPX 2.90LZMA]

Code size:
416 KB (425,984 bytes)

The file rufus_v1.3.2.exe has been discovered within the following programs.

ISO to USB  by isotousb.com
Publisher's description - “ISO to USB is a software can help you write the ISO image file to USB disks, it is really very simple to use, you only need to select the ISO file you want to burn, and select the USB device, then The software can quickly burn the entire ISO files.”
www.isotousb.com
About 9% of users remove it
Recuva  by Piriform
Recuva is a data recovery program and is able to recover files that have been "permanently" deleted and marked by the operating system as free space.
www.piriform.com/recuva
8% remove it
TrueCrypt  by TrueCrypt Foundation
Free open-source disk encryption software for Windows. Creates a virtual encrypted disk within a file and mounts it as a real disk. Encrypts an entire partition or storage device such as USB flash drive or hard drive.
www.truecrypt.org
10% remove it
 
Powered by Should I Remove It?

The file rufus_v1.3.2.exe has been seen being distributed by the following 5 URLs.

http://download1589.mediafire.com/l2wjt0y1nvmg/.../rufus_v1.3.2.exe

Scan rufus_v1.3.2.exe - Powered by Reason Core Security