v2_9_8_3568_win.exe

TomTom HOME

TomTom International BV

This is a self-extracting archive and installer. The file has been seen being downloaded from everydownload.net and multiple other hosts.
Publisher:
TomTom  (signed by TomTom International BV)

Product:
TomTom HOME

Description:
Setup Launcher Unicode

Version:
2.9.8

MD5:
b1aedf841b3596de02ef272015c8020e

SHA-1:
3cda93846642ec85d67796f1f25bcf6ed4286933

SHA-256:
9aa67525f1aa3a32c18aff49d098b491a559bd3ed1804617fa91bcb21751c443

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 11:33:59 PM UTC  (a few moments ago)

File size:
29.7 MB (31,122,120 bytes)

Product version:
2.9.8

Copyright:
Copyright (C) 2011 Flexera Software, Inc. and/or InstallShield Co. Inc. All Rights Reserved.

Original file name:
InstallShield Setup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United Kingdom)

Common path:
C:\users\{user}\appdata\roaming\tomtom\home\profiles\{user}.default\updates\v2_9_8_3568_win.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
1/29/2014 7:00:00 PM

Valid to:
1/29/2017 6:59:59 PM

Subject:
CN=TomTom International BV, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=TomTom International BV, L=Amsterdam, S=Noord Holland, C=NL

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
59E6BAF77BF08478BDA32B0EB078EC80

File PE Metadata
Compilation timestamp:
8/22/2011 1:25:24 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
393216:efm6UFlvLNHfNsF2tx+ObztdxzcKhjSKsix0xPYbfchR6egt2+piskx4eZXIrEy2:e+1JWEt4OxzvyprgM+Vk2aIr/4lHYq

Entry address:
0x9826B

Entry point:
E8, 4E, 28, 01, 00, E9, 79, FE, FF, FF, 85, C0, 74, 0D, 33, C9, 85, C0, 0F, 9F, C1, 8D, 4C, 09, FF, 8B, C1, C3, 0F, B6, 00, 0F, B6, 09, 2B, C1, 74, 0D, 33, C9, 85, C0, 0F, 9F, C1, 8D, 4C, 09, FF, 8B, C1, C3, 66, 8B, 06, 66, 3B, 01, 74, 35, 0F, B6, 11, 0F, B6, C0, 2B, C2, 74, 11, 33, D2, 85, C0, 0F, 9F, C2, 8D, 54, 12, FF, 8B, C2, 85, C0, 75, 1C, 0F, B6, 46, 01, 0F, B6, 49, 01, 2B, C1, 74, 10, 33, C9, 85, C0, 0F, 9F, C1, 8D, 4C, 09, FF, 8B, C1, C3, 33, C0, C3, 8B, 06, 3B, 01, 74, 6F, 0F, B6, 11, 0F, B6, C0...
 
[+]

Entropy:
7.9886  (probably packed)

Code size:
905.5 KB (927,232 bytes)

The file v2_9_8_3568_win.exe has been seen being distributed by the following 25 URLs.

http://everydownload.net/installing-71/us/tomtom-home/windows/.../?post_id=9029&sid=13328050

http://tomtom-home.fi.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-flqaMpKOik5U=

http://dw.uptodown.com/dl/1427923857/.../tomtom-home-2-9-8-0-multi-win.exe

http://everydownload.net/installing-7p/us/tomtom-home/windows/.../?post_id=9029&sid=14184626

http://everydownload.net/installing-7h/us/tomtom-home/windows/.../?post_id=9029&sid=13882322

http://everydownload.net/installing-7j/us/tomtom-home/windows/.../?post_id=9029&sid=13954576

http://dw.uptodown.com/dl/1434883793/.../tomtom-home-2-9-8-0-multi-win.exe

http://software.downloadtree.net/TomTomHOME2winlatest.exe

http://dw.uptodown.com/dl/1436853346/.../tomtom-home-2-9-8-0-multi-win.exe

https://dw.uptodown.com/dwn/BqVKSJzI_WllZl71FD96tIytDRhQHK87sM06MUPXSCr5Lj4rHq-RgHa5CqdRVBDUPmSSZAdCXr-7U5e6dVKSBMs3oaDMt_oaBQUorNKBxulDeXOEKyDUFs_Fp8LmZkAV/oZ1VspyrocgM5No_4IZURJIWBHkozXKOPuocoiuWlqeUG9MBZzoqx4WToCIMKd2bbilsib3P1NpCizkw3rE-HnzAVCHFbeQ22flzporb3tNUnpR8WhUIbIX4ipPLoHTr/8kfiq9UFHArxnR6GkygqhGPPxKsLIPSKOplmO3R5YdR9Xeund6M47fLNYiAgxxiSdnuxtGo14RuYlNgzAvkKRD53I6z4Dlwv-rUlRzTbgvn50u_SjWQAS8ah0FuNbDlW/.../

https://dw.uptodown.com/dwn/snNWEODx2POKue2PgpXGlnTvmeozD0BzV3chWB8p78kpWqOW-JeQMX1-HpJZNm6ZABW1Wirp7f00tq4OCPdjhPojw_0yj90c4p5GBy4aBoEbZ7BJCyQIWtSIsju608AE/2uXCMEOYbWvQpjYzC7xDm7hXNutXGvFdXSAYE17IO7iPuW761wZ2NVhJ5ZnAhtmmZTWMBVhgIAJyT5CrCiftGyooevv2N6MfqQdnP975TuWSiUDsyfvJ-ZMB6dNHf1Gg/.../

Scan v2_9_8_3568_win.exe - Powered by Reason Core Security