widgetsus.exe

Yahoo! Inc.

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This is installed with Yahoo! Widgets. The file has been seen being downloaded from filehippo.com and multiple other hosts.
Publisher:
Yahoo! Inc.  (signed and verified)

Description:
Yahoo! Widgets Setup

Version:
2008.04.28.01

MD5:
df191dec3a45c2b8a0df9b02ad35b923

SHA-1:
53a2e9589727276d934125a39bac0c38792a24f6

SHA-256:
7bab1cd05573cf9e4f90db32b250ab62d629c448c0c0accb8e3d45a60ce1ee4d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 3:21:51 AM UTC  (today)

File size:
15.1 MB (15,848,344 bytes)

Copyright:
Copyright (c) 2008 Yahoo! Inc.

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
English (United States)

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
8/11/2006 2:00:00 AM

Valid to:
9/4/2009 1:59:59 AM

Subject:
CN=Yahoo! Inc., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Yahoo! Inc., L=Santa Clara, S=CA, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5A2D0E95592B515A5CF3F5C5D59C88B7

File PE Metadata
Compilation timestamp:
11/27/2006 6:36:03 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
393216:7Nv+88fwyg1nbnH4++2Q1cH4Z3sVRfcLEI:hDIwxz4+GGXHI

Entry address:
0x3132

Entry point:
81, EC, 7C, 01, 00, 00, 53, 55, 56, 33, F6, 57, 89, 74, 24, 18, BD, 40, 92, 40, 00, C6, 44, 24, 10, 20, FF, 15, 30, 70, 40, 00, 56, FF, 15, 70, 72, 40, 00, A3, F0, 47, 42, 00, 56, 8D, 44, 24, 30, 68, 60, 01, 00, 00, 50, 56, 68, F8, FC, 41, 00, FF, 15, 58, 71, 40, 00, 68, 30, 92, 40, 00, 68, 40, 3F, 42, 00, E8, 28, 28, 00, 00, BB, 00, B4, 42, 00, 53, 68, 00, 04, 00, 00, FF, 15, B4, 70, 40, 00, E8, 64, FF, FF, FF, 85, C0, 75, 24, 68, FB, 03, 00, 00, 53, FF, 15, B0, 70, 40, 00, 68, 28, 92, 40, 00, 53, E8, 13...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
22.5 KB (23,040 bytes)

The file widgetsus.exe has been discovered within the following program.

Yahoo! Widgets  by Yahoo! Inc.
Yahoo! Widgets uses a JavaScript runtime environment combined with an XML interpreter to run small applications referred to as widgets, and hence is part of a class of software applications called widget engines.
widgets.yahoo.com
25% remove it
 
Powered by Should I Remove It?

The file widgetsus.exe has been seen being distributed by the following 30 URLs.

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://www.downloadpresentcity.com/TGU98qCwnehNeccCe2rL8Zepw80al3ViQcjIyHx6_9EeVTOxemaP avjaDrdPgT8hqXIRRF21xVwS3BuQhrFRNVtvuEbQSQaXTAoIqJzzSK8dKetKZ7QFsBg5Ncr96wP06s042P0efqMPJWaAp6KpxPLlFKm4UsQYbQ2 0gOYIBxpRES2k=-G_0CAGTQTWocOEHs35GgWrpgGirgMJED9rYYYj6JvTcOPFlj5GcRmEuxzdVU7_k2rXivhDQhx1oX3Unbc3EYag0u6zoBMaSuYO4K8YrX_NUz2xYp4Jx1SGNcuHkNKpX3MkeJztU07erEaKPG4irBxbxgjCMhkVNFG3zwWT4jFsSrjbGLXhknAOqX cMscCWBeIIquXwEFVQHWcYn5AN94expP4pdeUoZH8lfCaKKbhfI sv_lB_BwIoq5Fzjj5vsvWFAGBqNn09XTvD4eB19k8CFZD5tf7jrOAD2bRgiUSm6vFGHWWlkKR Vx7hmMr_GdRiJylqSPwb2HDu_pNBhOWjsD3TXQhaBDwY9bTY8Ud825i5l2F1Ax7p3UD iGSiLz RAvSerCsIjUUBfYORqeZo3Fnc1HEbR ZpXdsrdSF48__FmLxupOtz9kFPMmq80og8qKQptyk3TW8d0zk22abe9wM5I7IKZhaA65DmqMAKnpUkx6L2beEva57Nn4kpPByBP5IJOxPKGgkY__3g2MFceqdUdQY358eMOkBYmX_WUtmkDOHIPd_pltKq_PnnkQ8CQ6tsNb9lownrvfYTy8u_IXZxixx9uKvgun_KFLPP0Va Gv_ci5DX9stX9KK9bAF7aDedY8_6nEsEquZgZ4qh19H8sx2jHlCzZMhwwDw1HSeiXgncqnlewZ0d9v Y_P2WU5DgzKP943JZiOPAP2oV6pCKHAJRgbSAfeqdqKjK0SwN9sVgx14CBNdb4S1sE9Ju6FaAak3A8qMQW

http://www.filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

&onid=12565&oid=3001-12565_4-10335368&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=desktop/widgets-gadets&topicbrcrm=&pid=11015569&mfgid=57951&merid=57951&ctype=dm&cval=SPIGOTWIN&devicetype=desktop&pguid=98c852b806998661134af2af&viewguid=ZStUfFiuWVJsUIwA8XgFgugN@BgNYJMkRyRd&destUrl=http://files.downloadnow.com/s/software/11/01/55/.../widgetsus.exe

http://filehippo.com/download/file/.../

http://www.filehippo.com/download/file/.../

http://yahoo-widget-engine.soft32.com/get/file/id/.../?no_download_manager=true

Latest 30 of 30 download URLs