utorrentie.exe

BitTorrent Inc.

Publisher:
BitTorrent Inc.

Description:
WebHelper

Version:
1.0.0

MD5:
9ad0d1aaf2fdbe902ff6ac6f8c858c5f

SHA-1:
008907022c15c1f8a32fd429839f4a62a6dbc6c6

SHA-256:
52adedb2499344d4a3fb41491d0694c0afe09c66d93434ecea36b345fd4b868e

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/27/2024 12:53:02 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
W32/Sality.AG
7.11.30.172

File size:
329 KB (336,896 bytes)

Original file name:
RemoteIE.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\roaming\utorrent\updates\3.4.5_41202\utorrentie.exe

File PE Metadata
Compilation timestamp:
10/7/2015 4:32:21 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
3072:9M86QIHJkcRX7xHsuWlvPD3BiSeAKUHvXiBrV0+UnlP/YSLr1hlmy:9MxJ3dsvVurLV0n/VXlmy

Entry address:
0x26B4D

Entry point:
E8, 4B, C5, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, F0, BA, 44, 00, E8, 3D, 51, 00, 00, E8, 22, 2E, 00, 00, 0F, B7, F0, 6A, 02, E8, DE, C4, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, 1B, AA, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8...
 
[+]

Entropy:
6.4647

Code size:
247.5 KB (253,440 bytes)

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):
Connects to ec2-54-235-243-229.compute-1.amazonaws.com  (54.235.243.229:80)

TCP (HTTP):
Connects to ec2-174-129-255-167.compute-1.amazonaws.com  (174.129.255.167:80)

TCP (HTTP SSL):
Connects to wj-in-f95.1e100.net  (74.125.195.95:443)

TCP (HTTP SSL):
Connects to server-205-251-209-96.mxp4.r.cloudfront.net  (205.251.209.96:443)

TCP (HTTP SSL):
Connects to rio01s08-in-f25.1e100.net  (173.194.119.57:443)

TCP (HTTP SSL):
Connects to rio01s07-in-f27.1e100.net  (173.194.119.27:443)

TCP (HTTP SSL):
Connects to rio01s07-in-f12.1e100.net  (173.194.119.12:443)

TCP (HTTP):
Connects to ec2-54-225-180-63.compute-1.amazonaws.com  (54.225.180.63:80)

TCP (HTTP):
Connects to ec2-50-19-123-159.compute-1.amazonaws.com  (50.19.123.159:80)

TCP (HTTP):
Connects to ec2-107-20-217-71.compute-1.amazonaws.com  (107.20.217.71:80)

TCP (HTTP):
Connects to cdn-87-248-210-254.lon.llnw.net  (87.248.210.254:80)

TCP (HTTP):
Connects to cdn-68-142-101-254-mia1.llnw.net  (68.142.101.254:80)

Scan utorrentie.exe - Powered by Reason Core Security