home

bitcomet_1.40_x64_setup.exe

Xing Wang

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from s8539.chomikuj.pl and multiple other hosts.
Publisher:
Xing Wang  (signed and verified)

MD5:
0bb400b910356a51951eb27f81f4585a

SHA-1:
d7a8595eec396ea1825022c72bb2f33dcbe53f39

SHA-256:
31571e7fdacf177ff1a403dc0d4125d49cba6ce3dd17f21a6bd421bfd9136e3b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 6:31:15 PM UTC  (today)

File size:
10.2 MB (10,665,336 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Digital Signature
Signed by:
Xing Wang

Authority:
StartCom Ltd.

Valid from:
11/27/2013 12:22:03 AM

Valid to:
11/28/2015 12:30:30 AM

Subject:
E=wxhere@hotmail.com, CN=Xing Wang, L=Shanghai, S=Shanghai, C=CN, Description=Kk6apq1up6S525U1

Issuer:
CN=StartCom Class 2 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
0BF3

File PE Metadata
Compilation timestamp:
2/25/2012 2:19:59 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
196608:ythzqYOMItEhtKGhM+G/v/5H5cCZ6uycZU31YEfDrYQ3BcbOwU6:ythkktKGCvhHeCZ6uyryEfD8bbLj

Entry address:
0x39E3

Entry point:
81, EC, D4, 02, 00, 00, 53, 55, 56, 57, 6A, 20, 33, ED, 5E, 89, 6C, 24, 18, C7, 44, 24, 10, D8, 91, 40, 00, 89, 6C, 24, 14, FF, 15, 30, 80, 40, 00, 68, 01, 80, 00, 00, FF, 15, B8, 80, 40, 00, 55, FF, 15, C0, 82, 40, 00, 6A, 08, A3, B8, 2E, 47, 00, E8, 37, 2A, 00, 00, 55, 68, B4, 02, 00, 00, A3, D0, 2D, 47, 00, 8D, 44, 24, 38, 50, 55, 68, 1C, 93, 40, 00, FF, 15, 84, 81, 40, 00, 68, 04, 93, 40, 00, 68, C0, AD, 46, 00, E8, 19, 27, 00, 00, FF, 15, B4, 80, 40, 00, 50, BF, A0, 30, 4C, 00, 57, E8, 07, 27, 00, 00...
 
[+]

Entropy:
7.9989

Packer / compiler:
Nullsoft install system v2.x

Code size:
28 KB (28,672 bytes)

The file bitcomet_1.40_x64_setup.exe has been seen being distributed by the following 50 URLs.

http://s8539.chomikuj.pl/File.aspx?e=5KTWwjCgwXsrAdNlwdrrrEpumFJ3efah3Tsn98qZzpGVzFZPolpcUjxqJHjCF_ids6RYlNXMcE59aBFsTTkizqgFqSfczOp8BMIF8ApEZOJEFyPkivEppGcUBULWRzcNWQMDgrjokvWt5yQN8cSWkkqC9zK6Y4xSP1Zy-11reI9Zp9LCJxxrwRxpGNu_sppz&pv=2

http://bitcomet.software.informer.com/.../

http://low.software.dn.naver.com/f4b6ad4977ab8009690176bd4ebbf8c8/.../BitComet_1.40_x64_setup.exe

http://dw.uptodown.com/dwn/M1HtylOnUF0q3KGjTauDT95P2McLy6GiwjDbgHZZJKqsXMtaYdwqwzP2eeKM5WXvvDBfY6TBkdsPA_-YoSMiVAiPBBKR5i6lyb9XlRUwMK8OZqnIpjaeK0p4nWF2fo-N/.../

https://dw.uptodown.com/dwn/w3hIwDkyqR7kduGE3iP10rQ5SciHNAUS1LiXUP11s2h3LLpQN5mex96l115_nAleNIfynB6YsZZn2IF6RAnqHtRwrNcH26yGKyr6-jKrTx_WqCXAnUXX5lfHGSD_OUBH/fuKrjUxHhEZPf9rs_ySPrgYUlRmcVh588RBkWCgCthwZj8ViNzq2ww40qDjAv-k8MIK53o3_UqHPWURrSIdsp9pcBfWi8fTogdU4RvOzz4fLHJRCdEX7JqJZE1MoMBoP/kBfTQVIRgId39mK-R8NDX0r70FYQTe2Uu5Q4rYL3glIOHMEzxyxBEWqS_3FFqE7wbXlEssK-KyhzoZlrUC5BwJxT6S1oMjfa_uC3QmfTveNU-hQ02IyAQv38ONo7D_XH/.../

http://dw.uptodown.com/dwn/FnsjEjVrED_UnK72xTkc5ywZgfzaPBP9ktMxHNkGDbVaIxkPRnC4NpJ2Nvl68Eljy3NICCHBS4doYrF_gcLqhOcqLAD8NoRIKkmWuvT9DFNX0NfWAbzEQ05EQ9HE2FbI/.../

http://dl1.afterdawn.com/download/e24e4eec4118940ac64ad08bf0ba6a0c/583ba266/.../BitComet_1.40_x64_setup.exe

http://www.techtudo.com.br/_/software/.../download

http://dw.uptodown.com/dwn/xpadymCTphs-TrwAWw0sruDqK42WDhO8qZXBnhgUy04r-vZBXh6LSww71oftfYi8DmDGcsrN28Cgoh3OjdvkLL-lJ_54795pRoEOKCdCRvWPGQg-HOolMCC5iumNiiDY/.../

http://www.filehorse.com/download/file/.../

http://www.filehorse.com/download/file/.../

http://dw.uptodown.com/dwn/6eZDmvQw-IbHlnftx39UFIofcSPB0ZNqSg5jC6cADNcX_-i-SG1kT2weB2vM2ZXYFmr5zmDExK8oNiEegCakFhi85vCpGoLNbtb3Q8OnfYlfQJl_-hTawwkkBJFttCJj/tTnU-YWeGK7NPpkVITYCNkFotzhDDeyua1JU0wB9YhcQwFR0NF7215QiKjjb0XOskbStk-sB5sUPB4IjgoHg7JKmKWqtt3YCORDAm-Tcfcy96P4UCI-e-gb5pDbO98XU/.../

http://www.filepuma.com/file/1462832714c9575/bitcomet_64bit_1.40/.../0/

http://61.222.3.60/d12040d95ef50b594612c8cd8c61d84a/softking/soft/cn/.../BitComet_1.40_x64_setup.exe

http://dw.uptodown.com/dwn/KDahJys-WohkvKQOxvzFsYkEj7JjXs2Egkx_Jq2NiANYXpwQf_l5dAVuONf_mEF-Hpi_yGKTD43t9EyUSpsbKWw9PGG6o3iaRYEmO2EZhG7Shg96YYsDJennyDxZg55Q/.../

http://files592.xetbox.com/downloads/software/internet/.../bitcomet.x64.exe

http://www.filehorse.com/download/file/.../

http://download.dabang.pk:81/Softwares/.../BitComet_1.40_x64_setup.exe

https://download.fosshub.com/Protected/expiretime=1456696607;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9CaXRDb21ldC5odG1s/d6a04bd2295fcad45cbf50294785b897fd0add77a54f8cf90bfba8dfb803441d/.../BitComet_1.40_x64_setup.exe

http://www.filehorse.com/download/file/.../

http://www.filehorse.com/download/file/.../

http://download.fosshub.com/Protected/expiretime=1451153059;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9CaXRDb21ldC5odG1s/c243817423a58b5d1f249cc8628393fc4ee0ccb9c095c50924dd06b1295aff2b/.../BitComet_1.40_x64_setup.exe

http://www.filehorse.com/download/file/.../

https://download.fosshub.com/Protected/expiretime=1456330934;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9CaXRDb21ldC5odG1s/ca846209b71b861d4131d893872a85471bda494782d249c6407f0a34be2473bd/.../BitComet_1.40_x64_setup.exe

http://dw.uptodown.com/dwn/GUODxPlQS0p8j367F1CpKm8aZwwA_NWIYsFUpbaa9Twkyhq30v_hdIMrmQ7g2mBuwxU8MAgsEO49TyrcchX2ufECojsbPBFWF1tjzfZD7p1Rqq4j6yu9KKFR3bgDjfSE/aBUcbWXhCMBM1bpFDH_kI9oFX7I3skjWXE2VcpAKcBwTqf8mZJHMhJKokuZWnFOx54d-lBJ6Q-XEZR7ffJlP0PdXxuFZj--ZoE1b_dJKu25l8b9MH8kid7g1MXh1w6PS/.../

http://download696.mediafire.com/80mu393323xg/.../BitComet_1.40_x64.exe

https://download.fosshub.com/Protected/expiretime=1458653746;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9CaXRDb21ldC5odG1s/9969be25962d680e62002624787d202637c3a474ddb6544e913100e144510d0a/.../BitComet_1.40_x64_setup.exe

http://s8539.chomikuj.pl/File.aspx?e=5KTWwjCgwXsrAdNlwdrrrEpumFJ3efah3Tsn98qZzpE8Rd27iptOEJOUdXXHGHlcJrBctf8kvXnW94tc5uxMYECgu09mUX9r-FOPZl5Y0lrhzzoJkd4tvWBDXCplotE6Z5QudAdj_9gAFxhYR16WjH4C9JxHqtk4k3UsRI_2Q3AeTdcB9MjpcBn9cesFWpDW&pv=2

http://www.filehorse.com/download/file/.../

http://dw.uptodown.com/dwn/0QGlAKYh3CdiFyP-bbYEAfHhchXwk3irVeUmhJwg_CIAOOG4K98cwzXdauZ6EHjEjhiyHfqfJjyKb_DOj_CWyh13JyyufDYiant9FByMwczqHjMrTai_xJ6hGg54s-RL/6k7GAHBYtJ7amAtHle7JPYZWlt3f2cByCoNBCvJplXFJIe5KgTpz-2bG8XA1-QO9uoQ1ffVf4gIQkyFB-Sea2tuOFlWQRJHvxQr-iR0w1duABxr49b4O_tXo0HBo2f9a/.../

Latest 30 of 85 download URLs

Scan bitcomet_1.40_x64_setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.