home

1_lgs7_lgs7.exe

WEB_64 Setup

Logitech

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This is installed with multiple programs including MyHarmony. The file has been seen being downloaded from download2us.softpedia.com and multiple other hosts.
Publisher:
Logitech Inc.  (signed by Logitech)

Product:
WEB_64 Setup

Description:
Setup

Version:
8.58.183

MD5:
253b42cd48f3153226fc056c907802ed

SHA-1:
730939ea1bfc4251b1f2e87365f857a7b71ac561

SHA-256:
01a8ae1fcf9a8b3ab6cbd2c8b50a55bce16d39f16e611ff478478890a16eb31b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/16/2024 8:26:28 PM UTC  (today)

File size:
71.4 MB (74,818,632 bytes)

Copyright:
Copyright � 2005-2011 Logitech. All Rights Reserved

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\1_lgs7_lgs7.exe

Digital Signature
Signed by:
Logitech

Authority:
VeriSign, Inc.

Valid from:
3/19/2013 1:00:00 AM

Valid to:
5/19/2015 1:59:59 AM

Subject:
CN=Logitech, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Logitech, L=Newark, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
60698458B2A66CAE5253F8E7AEED3AC6

File PE Metadata
Compilation timestamp:
9/9/2009 3:23:14 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
1572864:SzXkJLK3+VWzIynRGkIvmMNH0bCl/JJwbBmXTqMsA9hTjdGuSaR8Xmc4jswONl3/:STk4+lyRCvmpbcJJwUvbhfdJamcfwOf/

Entry address:
0x33E9

Entry point:
81, EC, D4, 02, 00, 00, 53, 55, 56, 57, 6A, 20, 33, ED, 5E, 89, 6C, 24, 18, C7, 44, 24, 10, 70, 85, 40, 00, 89, 6C, 24, 14, FF, 15, 30, 80, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 80, 40, 00, 55, FF, 15, B0, 82, 40, 00, 6A, 08, A3, 78, 06, 47, 00, E8, 67, 27, 00, 00, 55, 68, B4, 02, 00, 00, A3, 90, 05, 47, 00, 8D, 44, 24, 38, 50, 55, 68, 6C, 85, 40, 00, FF, 15, 80, 81, 40, 00, 68, 54, 85, 40, 00, 68, 80, 85, 46, 00, E8, 35, 26, 00, 00, FF, 15, B0, 80, 40, 00, 50, BF, A0, 10, 4C, 00, 57, E8, 23, 26, 00, 00...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
25 KB (25,600 bytes)

The file 1_lgs7_lgs7.exe has been discovered within the following programs.

Java SE Development Kit 8 Update 45 (64-bit)  by Oracle Corporation
java.com
11% remove it
MyHarmony  by Logitech Inc.
3% remove it
 
Powered by Should I Remove It?

The file 1_lgs7_lgs7.exe has been seen being distributed by the following 11 URLs.

http://download2us.softpedia.com/dl/e776df613c27593c413600c6ebf1df55/57e9e2ef/300427446/drivers/.../LGS_8.58.183_x64_Logitech.exe

http://www.touslesdrivers.com/php/.../redirection.php?v_code=44359

http://dl.cdn.chip.de/downloads/.../LGS_8.58.183_x64_Logitech.exe

https://cloud.hilgenberg.cc/index.php/s/.../download

http://download2us.softpedia.com/dl/20fb2f921ce1dab5a66cde9b0cfd948d/57bd7953/300427446/drivers/.../LGS_8.58.183_x64_Logitech.exe

http://www.techspot.com/downloads/downloadnow/.../?evp=2bae551269244c525bfb4900685922e9&file=2

http://fichiers.touslesdrivers.com/.../LGS_8.58.183_x64_Logitech.exe

http://reservoir.marketstudio.net/reservoir?t=affiliate&p=digitalriver&d=http://www.logitech.com/pub/techsupport/.../LGS_8.58.183_x64_Logitech.exe

ftp://ftp.logitech.com/pub/techsupport/.../LGS_8.58.183_x64_Logitech.exe

http://download01.logitech.com/web/ftp/pub/techsupport/.../LGS_8.58.183_x64_Logitech.exe

http://www.logitech.com/pub/techsupport/.../LGS_8.58.183_x64_Logitech.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.