WebUpdater_WindowsXPSP3andnewer__256.exe

Garmin Web Update

Garmin International, Inc.

This is a setup program which is used to install the application. This is installed with multiple programs including Garmin WebUpdater. The file has been seen being downloaded from fileshare1020.depositfiles.org and multiple other hosts.
Publisher:
Garmin International  (signed by Garmin International, Inc.)

Product:
Garmin Web Update

Version:
3.0.0.0

MD5:
e5642259c77449f6ecf8ca4bf05f01a6

SHA-1:
2cf609afff8f980679f84685f7cb30ef92547899

SHA-256:
cc6dce044b4271efbf5bee343923d6974b1c835b7927917427a140e747ecf728

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/28/2024 6:48:29 AM UTC  (today)

File size:
10.9 MB (11,390,192 bytes)

Product version:
3.0.0.0

Copyright:
(c) 2012 Garmin Ltd. or its subsidiaries

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\webupdater_windowsxpsp3andnewer__256.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
8/5/2012 8:00:00 PM

Valid to:
9/13/2015 7:59:59 PM

Subject:
CN="Garmin International, Inc.", OU=Garmin International, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Garmin International, Inc.", L=Olathe, S=Kansas, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
073010462A96B270563264A44F349C6B

File PE Metadata
Compilation timestamp:
3/24/2010 8:58:52 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
196608:lQmYr3CslGMIno/YswPXKacrCB73kQgTvkAm7g63ak8BRyi3MON8IRv:qmdgifsI9croN+vqsk8BRl3NWIRv

Entry address:
0x132F6

Entry point:
55, 8B, EC, 6A, FF, 68, A8, 58, 41, 00, 68, F0, 32, 41, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, FF, 15, EC, 50, 41, 00, 59, 83, 0D, C4, B8, 41, 00, FF, 83, 0D, C8, B8, 41, 00, FF, FF, 15, F0, 50, 41, 00, 8B, 0D, B4, 98, 41, 00, 89, 08, FF, 15, F4, 50, 41, 00, 8B, 0D, B0, 98, 41, 00, 89, 08, A1, F8, 50, 41, 00, 8B, 00, A3, C0, B8, 41, 00, E8, 1C, 01, 00, 00, 39, 1D, A0, 96, 41, 00, 75, 0C, 68, 7E, 34, 41, 00, FF, 15, FC, 50...
 
[+]

Entropy:
7.9973  (probably packed)

Code size:
80 KB (81,920 bytes)

The file WebUpdater_WindowsXPSP3andnewer__256.exe has been discovered within the following programs.

Garmin WebUpdater  by Garmin
Garmin WebUpdater is the updater program which runs with Windows (in the background as a service) and automatically starts up when your computer boots. It checks for updates and automatically downloads and installs them if found based on the user's settings.
www.garmin.com
5% remove it
MyHarmony  by Logitech Inc.
3% remove it
 
Powered by Should I Remove It?

The file WebUpdater_WindowsXPSP3andnewer__256.exe has been seen being distributed by the following 24 URLs.

http://fileshare1020.depositfiles.org/auth-1462158871f2b5c11079624e147adc42-190.155.43.72-2550580897-151734286-guest/.../WebUpdater_WindowsXPSP3andnewer__256 carlitos eguez.exe

http://fileshare1020.depositfiles.org/auth-147874044238afba46325e9be11b03e1-191.109.72.106-34758982-151734286-guest/.../WebUpdater_WindowsXPSP3andnewer__256 carlitos eguez.exe

http://fileshare1020.dfiles.eu/auth-1476559599a0e68fe14835350ced5c76-195.53.113.46-12423803-151734286-guest/.../WebUpdater_WindowsXPSP3andnewer__256 carlitos eguez.exe

http://www.garmin.com/.../WebUpdater_WindowsXPSP3andnewer__256.exe

temp:WebUpdater_WindowsXPSP3andnewer__256.exe

http://srwtck.com/get?key=b11e8793cade0a4fedc9f17323b20200&ref=http://www8.garmin.com/support/download_details.jsp?id=931&uid=87733860&out=http://download.garmin.com/.../WebUpdater_WindowsXPSP3andnewer__256.exe

http://fileshare1020.dfiles.eu/auth-143912985131ede383b16b195834ce9c-46.136.26.116-2221267273-151734286-guest/.../WebUpdater_WindowsXPSP3andnewer__256 carlitos eguez.exe