usbfix_2016_8.201.exe

UsbFix- www.SosVirus.net - www.UsbFix.net

El Desaparecido - SosVirus.net - UsbFix.net

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from dw.uptodown.com and multiple other hosts.
Publisher:
El Desaparecido - SosVirus.net - UsbFix.net

Product:
UsbFix- www.SosVirus.net - www.UsbFix.net

Description:
UsbFix - Remove Malware From Your Drive!

Version:
8.2.0.1

MD5:
2f78487bbc665f9194aa9ffc41002c52

SHA-1:
8612d8c4b4be95e69a476f58c43c9179811ac40d

SHA-256:
d990b7eeb957959313a67f40ba17b668482fde3048ffc1de079db0e91db3b3b8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 1:49:02 PM UTC  (today)

File size:
2.9 MB (3,088,666 bytes)

Product version:
8

Copyright:
© 2008/2016 - El Desaparecido - www.SOSVirus.net

Trademarks:
Tous droits réservés.

Original file name:
UsbFix.exe

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\usbfix_2016_8.201.exe

File PE Metadata
Compilation timestamp:
12/27/2015 6:38:55 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:tWtvYXYqRnQ3qKYFcKMFdY/NF5WqgpB8cnL7Y8U1TPVfYe++ixPr/2IFsup/RnVY:tWt9qZ2qJRMF/pB/nID9RYeiPaDK5V21

Entry address:
0x310D

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 57, 33, DB, 68, 01, 80, 00, 00, 89, 5C, 24, 1C, C7, 44, 24, 14, 88, 91, 40, 00, 33, F6, C6, 44, 24, 18, 20, FF, 15, B4, 70, 40, 00, FF, 15, B0, 70, 40, 00, 66, 3D, 06, 00, 74, 11, 53, E8, E4, 2D, 00, 00, 3B, C3, 74, 07, 68, 00, 0C, 00, 00, FF, D0, 68, 7C, 91, 40, 00, E8, 65, 2D, 00, 00, 68, 74, 91, 40, 00, E8, 5B, 2D, 00, 00, 68, 68, 91, 40, 00, E8, 51, 2D, 00, 00, 6A, 0D, E8, B4, 2D, 00, 00, 6A, 0B, E8, AD, 2D, 00, 00, A3, 44, EC, 42, 00, FF, 15, 34, 70, 40, 00, 53, FF...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
24 KB (24,576 bytes)

The file usbfix_2016_8.201.exe has been seen being distributed by the following 50 URLs.

http://dw.uptodown.com/dwn/YJUx0V1gjzzNYJVD86vnlJQyw0CYT--4QaWjvZvPJBkpOqXSIhH4xbNN_C3mKCJOpWGmLJYAq_LpFUHg3xUN1CySDRkU-9cWZLStxcaN3_OMrE4RWClxVYgGEj_8VlHe/o7CB8ZToke8w-WXxir-1bVStSqZ8Dm84n7ggkqGeYX-Hwv6gYFA_vqI07aA3mtyi3nABk1S-pHZ0aPOjc5emQLryeWcWT9_Vy8o4cWu91QyECidFG-ATN9ZAJNM60ZN1/.../

http://dw3.uptodown.com/dwn/Kf75aXPwZAu062ijcF4wlCz4dvDb1ysMJEXB7tf_ipNrdVmm6jb14AlhN0vqbqp-sdvkBhF14oR14VVjolNR5H_AwPY7PFz3Q7Xrzn_OwmHS7x7pbwSOjgZQQR--gj90/K1SAbZ4GmLgaGQQ3E0-Hpaz-fKNxSdJvhtFFpbsKP6Pm_ZZNPXyN0VHAysk0aE3jav6jhIeDl65SjU6QZB5tjZ-9NqIBXqhYy6vepqgwDytazER1TjOv6GRcTZHiAooB/.../usbfix-8-201.exe

https://download.fosshub.com/Protected/expiretime=1457982398;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9Vc2JGaXguaHRtbA==/664eb1277b08f793a050ba972ec7b8690186be8974950e5d7eb11bff25ae5a4c/.../UsbFix_2016_8.201.exe

https://dw.uptodown.com/dwn/gQbluQLSu7RXefZ3ffS1lFhN12_ExT4Qfl7jw1DB5tPKFY9QQyWggsUOpJ11P1lAh7YfSdhuMvWlUUpPhiNlqvE8pnZZjov_KqjOZ10OnyoHleXhEz0AaIWeYalVRJ1s/GYFTm4xt69eJM8jmALqlbGpy0P_E1xqt2ZY-h6DwwHTm3i4iW_dIlHJrosbMtxxig6FoEtTKYU4TFSGAuYQwvPO4ub7O6YcRg8wJS8kGgAWr45gNeMKbx2rXlhmN6QfQ/xxP3MBqtQi9-HjUMXrriEh0_5QsycQNQEphhM4rQjMJBxH9C3XIEt77jF3tZFcKSp8edLYOi6KHnGQ25SALg8pe3aam_VLxRwwVfOEdLWO3zZ68Ii6_pao0W8MXR10OL/.../

http://dw.uptodown.com/dwn/yQNusaesTx4ewNPcrZ9MEghk2rmBlsqBJy9D61nz6OmF4hX-GZdKH35YgqjM67_9YQKyWxOkUqbssVUCupPKLMhR7aEbFRoOhj1W-aKnXRpwaOFolJvt0qRJBtHZWaOu/iAC7F46nPZxml684vIU4dAwP4oSjVRdrNmzwAPvEj_4Cbhah1jDEb1JLO_NQqudb9xcqR3AOEYPMKEf8O7VcIQqrVXh_9RJUMgtpqWc-ZwNGVe5lsRR9r9WW8MpvDHCa/.../

http://dw.uptodown.com/dwn/MHmo-tnquYWVmgEKOXU9q5glshf0Ct1KgUUIYINOSx3P9Sjgmas9ZE7ZBZWQqCx1gcqXnZFIQ2fYx5lZFTcQb7glKSFXrsAQvNKDlcKxm8gDMBVPHpUk7i5NRSjf6x3e/9O6Le12nHZeczgaI6onsKBrMHkZ7acB9Vq_7Fi5N-O9MJEvEhP-fchznqIghOzaitKsFsc2oLYxIJsRK_N1ir3Y4F6S6WiREaClGTOgfL-1AB3TI0fJsjEqknRkIEFUy/.../

https://download.fosshub.com/Protected/expiretime=1458247980;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9Vc2JGaXguaHRtbA==/a496d2a974128c2c7a71bdfd127261770c086621e60671940b46e24d54b1c14f/.../UsbFix_2016_8.201.exe

http://dw.uptodown.com/dwn/fnMTNaejKU8GjEkUPXsRFyTLZCrlJlUDkZsS2aDbShbbkXPxW6jF4vFS_C_eMOOChFVR-q-d4hDawQw_UYIpvuH8a5is4IWqOI35hu7XDS4eVoCAFDDRagU9pgWlrb3F/w7RtuAY50i0AM0GM0s-EN8DCJ--7URj8mB-7HuzGGpV4p_PK34xipWVRHdS7AFNwWoI7o4SB6lTf7tJfEC5hUvTlkEem0BiQ2Cj12W2hdcGVy4n2rmUzgZSGXsCKjv7e/.../

http://dw.uptodown.com/dwn/p-VGuLZD4jsqvVgdESGIipGUYuCX0Cvphxc9wSBysKHBWkOICWxJ8bF491RtbAn7RljsqQZb_E6C7grIVrI4qucY83zLgiGmPXIxZGS1jVntsC7RotT1SYw6V-2i-6Tp/IosISHyjVJCl4UMq7z3EOGG2OUKCMiMmk2NJR05QJMQL4h4bmJF7ISFKlDCNWkPnOQLtWkaAIX7eJs73i5x6CokV-g40qxmrxJaZP_U0iB2HuQ-T4ItDCYNHdD-Z143k/.../

https://download.fosshub.com/Protected/expiretime=1458055375;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9Vc2JGaXguaHRtbA==/6deeb6c0b22b167c78f56bd7bcfd6a09898c2316eec5707a01a25cce9ce6413c/.../UsbFix_2016_8.201.exe

http://dw.uptodown.com/dwn/zBSLY5WmdePfFefT34kkKZNP-Pq8aDaR1ogswjdMNtNgTYDsU4RkvIojFkB6zeExIvOzy0MVlcWMD04Z-Zmvo-Evmzlzu93nerfE02u-VJc9TRQZLwNPsMhp2Xcnkblg/jIhXYC1CJB18yowg1bP0492_3gEerSscpVbh6Lush9ZPc_6yHu4OupusvC8liGSjPVZK361vk_KiO7L9oGgV1Ei2OZBPZ55OvpdnlEePyK6Mn5l2ezscItj_yi6PZ3eD/.../

http://dw.uptodown.com/dwn/1FQecziLbKL14QvE74fJE9ZrffcAy_f_Yyx3OAcYoIzM-YOeVzK_mmD47Ki7k2XbW9_mcX8Osj98bWiub90wxCPT-ggR_wAGfxmEJe4xf4bBenK_3l3PDKQFcgZnPJ2t/UUI73wM-MFHXLhVMQiV9T4GCgqekYRAUgJDHANJILPS3Epg0yM-hLQrOZGw9cRDBHn3ElbL3syI4WnTrYDc8PU6_sMf-HmAbJlOK1tMKhSktdFwHJqLme0C_t6plmojb/.../

https://dw.uptodown.com/dwn/a3ub53m8WZ63vr-lTEVZ6lWAym6rNJVgARW5g9WpSXi_vcSp7b7nN7ZU3M3ZsJmlyOgV3E9kvrl-gGLV8tm9BEBiD4UfarnA_KZc-v1dEz17wUsKSkw2TmdMmR_Pe1q6/zl3vCRJZdgaZQEhlxSP6xsCVZxeV8lOxRN1FUMsEICm1l-gVUUxJ0I7whkA9gOqV3rGRkQjWKYlkns99311KH9n-v8M-LCtWa9WOy6Xqym-o5NY5knuRuh9Y_9lUSz-P/.../

http://dw.uptodown.com/dwn/8teqxu1ug2C_Feb1fGrZIbaWX4Pr4l_0nwDOY2Aq7j0DH4D1o7gztvWBEUsbhxVpx5ZqWtBxMihEsXkGdCqAcS7IPht6nILpOTpJyftOPr8Sujc7TP7LkXyQQbqzHgkr/RsLk2b5AjWaKqzyT7TWebhzraE4TZZSoLaCwBsf-iTHQoo3twl6BDv2r8U7OmDhSffYGEWEixZPOiW5koHNRFw3r1GAyHrpQMbDIpd_h5nEHcWkciv7FQjjfRIoWiJQ-/.../

http://dw.uptodown.com/dwn/KF_mC8RRJfYimfivms4vqCzfj4WpSLGWT-Il9sFmQ8WindnviB0iWj-X8uPtVijNqOIwCNIDyFy6fGnhhw_1K-ELBVoy1yd9aw1xQZSgNHTpj1QRaq91dKekFUK2p670/pI4m4DdJF1v8wh7lYs2mGD0saiadDb1ZvPbrMI7W1bSAMPtxAc5fs81zI64JLvOl0GymUyGWLSkdjZeXILzpBn1VNk3sDpsNd-cnlPWVuH7f47HvEomy7501hG9B8xqu/.../

https://dw.uptodown.com/dwn/bbBdz2z5ItgMUgc0tEzAvWTcO3Z658dr2tya7cObg5VymfMTlzC5ZNCIa3NkfClgvmISiAACskaxROGZF3dZ7HavmQhogEO4WYbirEK1cRlo6px3kd7J-dW4fhaG6p71/SU1-v-eSvvPHKZH-kL0XCsW_Fyc1XxD4_zOkv8osbLUUQm1YdyYCkFhv21GcCWDLZ12fDSSHup7L8dtvrk0p2JN2PjJGsGyupOyoUgLB7LsRUNwVaAFwy69ZH8-K7W--/.../

Latest 30 of 64 download URLs

Scan usbfix_2016_8.201.exe - Powered by Reason Core Security