usbav-setup-english.exe

USB-AV Lab

This is a setup and installation application. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
Publisher:
USB-AV Lab

Description:
USB-AV Antivirus Free 2012 3.2.8.0 Installation

Version:
3.2.8.0

MD5:
fb26a67cb300a9890e8f117017483f76

SHA-1:
575e9126f2d03a16db0eb1d7679dc1cb590e7e01

SHA-256:
dee6cb65ca881c3085b3b12b2d8e73fd535fec67eb8586d2210fb82c8a5bf6e5

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/2/2024 9:34:43 AM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
Trojan/Win32.PerfectKeylogger
14.04.05

File size:
10.7 MB (11,220,823 bytes)

Copyright:
USB-AV Lab

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
6/20/1992 1:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:ImnDHmpI5Ikg6HJwIbeQF4swAO1EBuYONgOVjVng+54sINLn8JX/1B32:IMHmp4Ikg6CxXPyBdONgYVg+qLNLn8Ji

Entry address:
0x19B64

Entry point:
55, 8B, EC, 83, C4, F0, B8, 9C, 9A, 41, 00, E8, B8, AB, FE, FF, B8, C4, 9B, 41, 00, E8, 5A, DC, FE, FF, 8B, 15, C8, A6, 41, 00, 89, 02, 8B, 15, C8, A6, 41, 00, 8B, 12, A1, CC, A6, 41, 00, E8, 48, D5, FF, FF, 8B, 15, C8, A6, 41, 00, 8B, 12, A1, 6C, A6, 41, 00, E8, 02, 71, FF, FF, A1, C8, A6, 41, 00, E8, 14, 18, FF, FF, E8, D7, 99, FE, FF, 00, 00, 00, FF, FF, FF, FF, 01, 00, 00, 00, 2A, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.9981

Developed / compiled with:
Microsoft Visual C++

Code size:
99 KB (101,376 bytes)

The file usbav-setup-english.exe has been seen being distributed by the following 50 URLs.

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1443498838&Signature=fPebXGoGBw4KbI5P6G7luIBnJ5R4vPqrL1-aW1gXnGtggOjS6kZYFx9UUVr8xRd-kCkgeFCTDiWUbJoOBiHjGbFM0dZwjikoMOvBAL3OqG72KkgkKP8XMXcLavtbNUnY2keVcquvWrd4f1d3wlXoFmd2~7JoWyp1koVAGHJkx3Y_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1441289223&Signature=F4wtW2T2MtnBWI6QXqm~M6BEz25Eua6Wc1BV-Ekmja53LlgqwOzn5cJsUytNVsFw75LYbOocAXFo1xt3so9EXltBgJ87vX2nzDuRHYhIRHAGg9bjzRwo~wmjSM1-i5a22xEqJkRm76aV-DKok3oQEy70JL8hGw0PtxW7oDyxRWo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1472128341&Signature=JGJwsBpPjCbQdDErivfL3IoEx8tvh6epRzBBXw8U4BpCwMr~~miWv4aqaH5hk5utLWK9Hs5Tz1LvwacRtKD9ifCidS~teCs-6cUofOCLWq7O5ouxou42gyDCanwWkKYyJAlSFF0HC0JIou4~IHKuaPsB3nscueHxGYqVaHN7~xc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_en&type=PROGRAM&Expires=1456847308&Signature=Pbnow7CBpDuPUisKyIt9lvSulqUQF1oXjHb73Pkvm1V1c7iy-haQFaFbxzgZHHcrhcsCSoYxdEqtnjnEczTSV1AVohKVn6RekcKuIorlQFRB0Y8~MN2xWoQBN7nvDNO9TXgYitjAgMyU0RxoD3IuvtNjStViofj-G~O8HupFNgI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://download.informer.com/.../usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1479210504&Signature=MYNkjDaY0ucPut8T5Fluv9gwz4KquyAZAiwdq20-fszTFmS4BpPC~vMqhLB5VtEunw-0gn4VNSGEu3dBqGvTd4qHOxwLMaNQJxBqfCq5xaIpieWeA6RqdezuNxGgjJe-PR2wt9~Gg16-kx4ivduefP8VCtTGt2YEOq1CaPUvMlc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1438768928&Signature=JNEbZWriHADvdiLuoUJjquzfKwKaMx-47hPL99CJnrPSLuetiG7-cYmjY6YArezVSn8H4fxOkJsRpj3hWOov1z9YLdyJEqeLscMMV4CQTHw-Khq-~dy6b3vkTtHGOPjHTcOON4SwbTd4vbtBYOuHcn-2TTKQf9Af~DHv4qy-1EE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1470451119&Signature=ThrJWFYYxIniwYiiSFlyIcz1I7gRiFBU~dxUXjLrR~Wq3JzXfVYpQGVrvamdW2-BVPzXWFJbBm~k38ouHpXbLMWtHVLPC0XJkFpslgSQr2tENPg4X2BM5swX-sapS6J-skTm9N-CWIudyB8Wf4HDE9Z-jpM8hjZ3jQ08wpiGIIc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_en&type=PROGRAM&Expires=1478244521&Signature=bL9SdCN0nCi2h0c-ee4XpSr8k6vyr1ycWmxrpXyP7Ds3TijUmSt1iy~CF6gaEQtTbFkvXKuhko7dVRYWxGnk9z9CnNH~8Smrnlb22JwgpF5FuoN1A2-kUShBw5mwoUNs7VVLnwT--cN3jjJjztLxgy62Oc2-C~t7LZtWbN61laM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_en&type=PROGRAM&Expires=1479973269&Signature=DXAqC-Hf46qiCqUpHnpufXBw5tH5qsOZ00xzFpxrtVkfiTPb31VkIg47E3kDH3ilrte6ZxtNzXEKN0Ps8N2H67Tg1sIlxjKVP8uQCmSGhv1CUgiw2cGBAu7rMIXc-UfWlJe70vg9xOfOMtAcFDE2RXoaFrfrkDeIfcVrxOP2PXA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1481814142&Signature=S~~eYy9gZ19qxt0B1IY-VY5teiwV34EeVH9I87H6PeMJjftredmj5eoQ2en-QmsPDu3pi6YCemi-XTuzoaEiuQky6Pbfr7rO7QsncdXqQvRm1k-cAzgdi~79HGa5voGEXtaIuyivFKMxx2seA~jYyn1Pa6ta7UwY1nkEMRrIlvc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1476585518&Signature=f8w0pM~IjQPm-ZHkSAL-Sa4W1Et~Bve87P2AiyYSZsXZKmZi6TxKVhs5ld~ABFzxRvhacKV3C~l8NEDqwpcs15eaxSRNrbxBkXNKWQNmBh7R3Lwz4htCDUrfkHG~jtnrJEL4OwG0p~wNdswZHXr28DhceuebPtqiPl0~mOMPxZs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1451708830&Signature=Nvh4Yu9Ff~wYk1jxUejpaus8jq61CHfJxAsx1bQ5it4PhczasVJ1S1bmIr~vGTi7-75PnOZDac82P4SkjPrmIaWluxOjS8I6xBRHOZjXXEuDmTbU9eAZi0GIbMUCsbuzRwmSUyVfEL4Ep0mwEnO-F0Va4u77JVE3JWj2xHut0Tc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_en&type=PROGRAM&Expires=1439917142&Signature=YdC4I0cZj6RUFxwunr9n3mtvoO4Au1xgFBODKI2fYtts67Ieqbx9ZdMwQcpHRCa41wVwDiQOsb7nzacAfW-hOd97UeJ65AGJTHTdiG2LBVDzT5e9DIu~vuQOrsQXcVAxT~dIdoE8fZeLSZbJp8EaS8U1qBUnOc3LbgKgpxED-Zc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

https://dw.uptodown.com/dwn/IgJ0i-EFQZ7gkt2SKGlifASR0d3Wy1pecLgfX8zFQ63ysYzDdh76pr0XBt9LOjZivCjMkiDN0h3N969fqeD7AwCk9CVmesJ6AsPrSNgg7Ym5Bn4u8qMVFRuaw9t_jCoe/CLbwxcBBJBefK18ZLREzh9jRS2YcxOgN6KQogtUGZESV7L6WHoT9L-vVjd2tiZ5BgPKhCTsTgEH9ON4cP3Jx-VHpqkheLeos0TQWuH4xfioiMeA1dpkBy-1cWKxVNIW6/4bQ1Br99qs3fTCLmYkG5phtYSj4ctgs1UDCkwz6rVVdBSM3uL4cjTIBjR6gX2WIVcS5PzVa2tXnjaiX4AQFPDr_bg8O-aZ9hlVorFQH_2FAEHHeXFn-TJHoyLWiHwiKH/.../

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1476762537&Signature=GCy1DtaBFrgo4f9JIz4XDWp-xSRE4oBcuMuSvWXe4JJBCu5YRng79xv2X-igH6esugGuU7457WEsuoQSbXP~mPjPhvc8Bbg42gsyNivlZgAOSh7I86mAJX1WGPzqf4JPtuUU-CeOSN0RPFYCV8l9e72CPy-d5KW2nMMUxv-Fp90_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1477028640&Signature=QDMu27pAg-5vHQYCS1L5hexkTDooO8huS3EIzEPt-icqGHbKJmZzSNJX9KdZR4FpM80ffX33tfeCwyLx7tXAGqFDf879-SS10qDcyN9NUAx5OWw4TS8nnfq-vXqC901gxnYoK2Vbl9Zcs47Xz568g~qnDbzBtrxYi-R3lO0wZUM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://dw.uptodown.com/dwn/17S1Nc8-1ZGrd53VrKwLRmZd5kx11Tztw6qYT4YHY7los1Ogdt5WWWxK83PE0L3EgRYNGpVM4hiqrVi_kXUaEHNq-wSsoxMjL_75Q9kXJ_eODlt2vxsYaO9AMKj8puD7/-0dwFMfJie3jvpzxgT6ErewCDEnN58PzMxLBn1IYZ4IzFNlc2ifVg-3HC7EmeIkIeTBbXOOxP0I4L9mUmNlHhCnMvTBsrWfsuqCiODKW_ihsfUlvI72ZcHCi1ja9jb31/.../

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1447113381&Signature=Bu0aDnO~5lMOQnWxXw~2F8eve1qXNKfg0r2qeM7GaL64cgLb5UBhJR6P~HBHhpX6v8XWyB~TAylLf7oUo-znjAIJKY2JVUhkBTk9naftNhpBGiKR2K7PrR~QQeHhcjZjhBjJsqq5PbZvJdO~pUkW09qL9YbZqpOVWwkJrxboycY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://dw16.uptodown.com/dwn/YBDnu6SIz4qvsx2WfhDVYM01dMuGk7cVlY-HD4Grm8NmkyL2i_3N3JspXEZHBN4xBSsgVJ6UScgr0Srf6nC6GNAUQO6_kdNId3z1I5B4luhIHaluKy1eqCAxc7oX_tXc/nFc4vZ1Y70IqbFoTDoaSkWW1SNpDfsW5-uqwSPmmLzrT5Izvyyp50A-jMMRJyr3OaS_i7P1Ps-FWzvLEcyTi1Wwa7n7ceud-c9VkL61zaVrQSNzYgkk0oFT1TYzEoEN_/TQJl9XfhxzWDqynIJytFtIMxJ1k1Fq7vPAjS-PQOwALYMClgrY0A_npNrYEvvVM50620lx01XiN_zDBY_L3woddGEIiIh7UJPicq0ZMvzqPGTQDHRusRqBOkpTlK8raA/.../usb-av-3-2-8-0-en-win.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1455250463&Signature=CSLvE6QDSNCFcM2~COTsQt0hYJPgR8WeRA9xl2HUyItvQaxqTmDI1NaVlH1Bn8uKsOGVYqIZYkpgILPgQxBmd3W~23dEDd6CIW4HyDoAgMHtaSc1qbHR2YPSCGkEgjKZw2-6anIeYPVUeAWPLNVo3eJy~HZkw~maJ1jkP5jFdwQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_en&type=PROGRAM&Expires=1478609043&Signature=H9xtx46vj2hiEF5GPM5zC~8xRaJuMJ05XZ6d-hSk2Id~DeihoWzwo5r1UVzdYWnlj8RG5w3PzHV-1HYnT87-~fVUG8bpOBG4eQ9sokRQga08IgDeOc8YLFksvQv9ajorXmeFo6Avzs-QPCbDKDyxEtpTIE9d7v8o10dLeKaXVIs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1441891511&Signature=Fn5VoB5wu4mCQ8axPL7k-u4DlK-qDnNXKaMZiaCgmWhKOO2Grn0zI8hh71RyDWM6tyBLVvYInOX8G7ITxuUpHxJ6qKPg2CtOgx-W9~B37cvhrYBkgqwBJP2JLo9BJbi~tKydkqc5yIUyLU2nllXgqVeR-IcquIOjv1Uww~SSj~8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_en&type=PROGRAM&Expires=1426486731&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=FJkHWpPFU9ID9g-eI15QNvzmhBCR5xewIb7udUF1XdZgGPZWFgdB8nkON2~oJ~OGE1SaNIN2xuVWiE0SZcOWJiqsOjP5YZ5ULP~5S1gg2lnX0IxgXYnjRigdnKeGOU~wXwJ3M7pFhe8PL4piLvVbaxy416tBhX~ncv6M8kZmefg_&filename=usbav-setup-english.exe

http://down01.wxsrv.com/descargando/024/4881/usb-av-antivirus-2013/.../usb-av-antivirus-2013.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_es&type=PROGRAM&Expires=1447324103&Signature=W2P7PKMHzgdwXJYLEl~otCPlSr7tSLC-VKpNt4tfVvlzWCueUhlxxRKn2VF3WyIxs2CNpeyzgpLdaVCwjfgZuowa2d2jfj9A2wB0Sin5pKbpscQ7rvM2TqckdAVArje0wpTzENptiY-Ocgx3FicFSwo05s~jnlxbUYD6ENRheKw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_en&type=PROGRAM&Expires=1445556503&Signature=L26dCY4j7ZA4~1YYAFo1u9hHSgZouYtKVqmf3Il~ivKKDolh1G1aQHi10RfvoVkjqKZQ4AP~7H-ulyYW9Tcy6OmGx~DjqbGRr0YSkzt9RT7mwxYgHCqbBfdnjSr4Z82BGPo1o6-VCH7gWKxHF1TcY9-ZGiK4QiO09NEtiZXzwJU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

http://gsf-cf.softonic.com/575/e91/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3347404&instance=softonic_en&type=PROGRAM&Expires=1455959361&Signature=eCd8xTLY5ntODj4igUxQdsGp1~LsfbKDgycIMJwJvmQrsb6d6Y8F55spAglHzcxpyLlUVO6D2Z8Nvho9b1Ro0c4I1IBXewukc1lixLUUi-8c4OxWuPQNE7Rnfe2iWqBjIoNw79VC2VcJrAzeOq5DThLUrcQakMLgPayoSgGQ8WA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=usbav-setup-english.exe

Latest 30 of 55 download URLs

Scan usbav-setup-english.exe - Powered by Reason Core Security