home

advisorinstaller.exe

Belarc, Inc.

This is a self-extracting archive and installer. The file has been seen being downloaded from www.belarc.com.
Publisher:
Belarc, Inc.

Description:
Belarc Advisor Installer

Version:
8.5.3.0

MD5:
84038d6712db4dbddfb1e238675aca15

SHA-1:
9f90fb0010b06b4450903a537accbed64ce5e979

SHA-256:
b0b80c795029437cfe27249f3c1f7a193c6991204eacd4103289cec54f5a8931

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 3:05:45 AM UTC  (today)

File size:
4.3 MB (4,471,280 bytes)

Copyright:
Copyright (c) 2016 Belarc, Inc.

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\advisorinstaller.exe

File PE Metadata
Compilation timestamp:
8/13/2001 8:13:38 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:pk8npvr707T4cZRymx2RCVr3NcGSC0GAJz4Xx6Ba7e/W3ofOCDJj4ID0k9h:pxgXZAqr3XSsWzGx6Q7e/dWu4Iokf

Entry address:
0x21AF

Entry point:
84, E9, 80, F9, 21, C6, C5, DC, 84, E0, F6, C4, 0C, 8B, C9, 0B, FF, 86, FF, 00, D7, 0F, B7, F7, 35, D7, C0, 00, 00, C7, C6, C6, BB, 5E, 86, 8B, D7, 15, D0, 7F, D6, 08, 69, F3, 68, 0E, 26, 43, 81, ED, D1, 6A, 76, 97, 0F, AF, C8, BA, 46, AD, 2E, 82, 69, F0, 96, 5B, D5, 8B, 48, 19, CE, C7, C3, 6F, F9, 73, 3E, 85, FF, E8, 89, 00, 00, 00, 85, FB, 77, 07, FE, CE, 0F, BE, FA, 84, CC, 48, 80, EE, B1, 86, FB, FF, C0, 69, DE, 98, 42, 7F, 03, 85, CA, B6, 1A, 8D, 35, 0A, 1B, DB, A8, F2, B0, 4E, 68, 70, 52, 00, 00, BA...
 
[+]

Entropy:
7.9997  (probably packed)

Code size:
8.5 KB (8,704 bytes)

The file advisorinstaller.exe has been seen being distributed by the following URL.

http://www.belarc.com/.../advisorinstaller.exe

Scan advisorinstaller.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.