home

analyse-it_2_30.exe

Analyse-it for Microsoft Excel

Analyse-it Software, Ltd.

This is a setup and installation application. The file has been seen being downloaded from cdn.analyse-it.com and multiple other hosts.
Publisher:
Analyse-it Software, Ltd.  (signed and verified)

Product:
Analyse-it for Microsoft Excel

Description:
Analyse-it for Microsoft Excel - Setup

Version:
1, 0, 5, 0

MD5:
2e2c0c87c4eed7667f4fea2ede0d03ec

SHA-1:
6bfd534c6bede6fce9f7e72b4dfdb24284209d64

SHA-256:
b6c4cbc44c269a3a23a6f39ad647a3c6f7e34df14869d7afe3e6b8417b24a7cf

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/26/2024 11:32:27 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Qihoo 360 Security
virus.exp.cve.2011.1990
1.0.0.1015

File size:
7.2 MB (7,507,808 bytes)

Product version:
1, 0, 5, 0

Copyright:
Copyright © 2000 Analyse-it Sotware, Ltd.

Original file name:
setup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United Kingdom)

Common path:
C:\users\{user}\downloads\analyse-it_2_30.exe

Digital Signature
Signed by:
Analyse-it Software, Ltd.

Authority:
The USERTRUST Network

Valid from:
4/15/2011 2:00:00 AM

Valid to:
4/15/2013 1:59:59 AM

Subject:
CN="Analyse-it Software, Ltd.", O="Analyse-it Software, Ltd.", STREET=The Tannery, STREET=91 Kirkstall Road, L=Leeds, S=West Yorkshire, PostalCode=LS3 1HS, C=GB

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
21F4424B6365B16B4A426F257475EF3B

File PE Metadata
Compilation timestamp:
10/27/2012 8:47:58 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
196608:4GqN8ouZsiOdYAfw3oD8JfOWfUkjRHiowf:4D2zZ5ATUfOWfUORHi

Entry address:
0x14EE8

Entry point:
55, 8B, EC, 6A, FF, 68, 30, 06, 42, 00, 68, A8, 8B, 41, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, D4, F0, 41, 00, 33, D2, 8A, D4, 89, 15, B8, B0, 42, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, B4, B0, 42, 00, C1, E1, 08, 03, CA, 89, 0D, B0, B0, 42, 00, C1, E8, 10, A3, AC, B0, 42, 00, 33, F6, 56, E8, AC, 22, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, 32, 1D, 00, 00, FF, 15, 64, F1, 41, 00, A3, 44, DB, 42, 00, E8...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
120 KB (122,880 bytes)

The file analyse-it_2_30.exe has been seen being distributed by the following 2 URLs.

http://cdn.analyse-it.com/download/Analyse-it/.../Analyse-it_2_30.EXE

http://analyse-it.com/download/Analyse-it/.../Analyse-it_2_30.EXE

Scan analyse-it_2_30.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.