unlocker-setup.exe

IObit Unlocker

IObit Information Technology

This is a setup and installation application. The file has been seen being downloaded from www.tamindir.com and multiple other hosts.
Publisher:
IObit   (signed by IObit Information Technology)

Product:
IObit Unlocker

Version:
1.1

MD5:
5aff327b388e7dbd63509f44c0e23d3a

SHA-1:
9bf4da1bf90a69413cdd003f65ad4d2a91396e67

SHA-256:
c114ff90e7cb93cadea5d4af69624c5c17b7beaafe0e0285f41371fe5c68b76d

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/5/2024 10:38:01 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Malware-gen
2014.9-150721

Dr.Web
riskware program Program.Unwanted.276, is riskware program Program.Unwanted.153
9.0.1.05190

ESET NOD32
Win32/Toolbar.Widgi (variant)
9.9055

File size:
2.3 MB (2,451,912 bytes)

Product version:
1.1

Copyright:
Copyright © 2005-2015

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\unlocker-setup.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
1/15/2013 3:00:00 AM

Valid to:
2/15/2016 2:59:59 AM

Subject:
CN=IObit Information Technology, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=IObit Information Technology, L=Chengdu, S=Sichuan, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
11CADAF29DA4C3CB113BF1877B120103

File PE Metadata
Compilation timestamp:
10/13/2013 11:19:32 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:jIPYz2KQMb4jfbDalv1AZkMV8XzhjBT3uBZAKxhqPl/pspgG9hmY0hW3hUyn:uoXQMbayUkogdjAYNhqhmYaWJn

Entry address:
0x113BC

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 2C, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 16, D8, FF, FF, E8, 65, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 2B, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 50, 86...
 
[+]

Entropy:
7.9734

Developed / compiled with:
Microsoft Visual C++

Code size:
63.5 KB (65,024 bytes)

The file unlocker-setup.exe has been seen being distributed by the following 30 URLs.

http://www.tamindir.com/indir/MjAxNi0xMi0wNyAxMDo0ODozOQ==/iobit-unlocker/windows/.../

https://openload.co/.../C23VeZU2LBQ~1482811319~201.83.0.0~TnX-ljeN

http://www.tamindir.com/indir/MjAxNi0xMS0xMyAyMzo1Mjo1NQ==/iobit-unlocker/windows/.../

https://openload.co/.../C23VeZU2LBQ~1478117460~138.185.0.0~PnmS338N

https://openload.co/.../C23VeZU2LBQ~1475962923~168.194.0.0~p-gf3vHM

https://iobit-unlocker.en.softonic.com/.../6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPxJrO1TsV2ZQoV4i4Pnuvz5BfvcJF5YcB ioRo OYiFW6cFtqKP8Vz2qJNDZpUR3xHBGDSSpAWPYdFAyuH24lwiFvM0oudIhnTm7lI3hO v6cwqSJXgWwfLa3ELvokdPs=

http://www.softportal.com/getsoft-22731-iobit-unlocker-2.html

http://iobit-unlocker.en.softonic.com/.../6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPxJrO1TsV2ZQoV4i4Pnuvz5BfvcJF5YcB ioRo OYiFW6cFtqKP8Vz2qJNDZpUR3xHBGDSSpAWPYdFAyuH24lwiFvM0oudIhnTm7lI3hO v6cwqSJXgWwfLa3ELvokdPs=

https://mega.nz/temporary/.../lQNQUYYT

http://scdn.softfiles.ru/rozu2.html?sect=1472426453&parameter=IObitUnlocker_Rus_Setup.exe&secl=kbDjhuGbQU4BRmpIG73DRw&clr=1

http://iobit-unlocker.softonic.com.br/.../6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPxJrO1TsV2ZQoV4i4Pnuvz5BfvcJF5YcB ioRo OYiFW6cFtqKP8Vz2qJNDZpUR3xHBGDSSpAWPYdFAyuH24lwiFvM0oudIhnTm7lI3hO v6cwqSJXgWwfLa3ELvokdPs=

http://www.techtudo.com.br/_/software/.../download

http://iobit-unlocker.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/.../kkR1Shz3a9ZV5 yYu9MbtIP24BOdhwiq2rqmZhWmqjA5Maf1yNDAS968mmLzKE=

Latest 30 of 30 download URLs

Scan unlocker-setup.exe - Powered by Reason Core Security