home

bleachbit-0.9.5-setup.exe

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from katana.oooninja.com.
MD5:
9f8f1d20652e2329e72f09e8b2e92dc5

SHA-1:
406fbfc5fecadba9125ede22b51bbad631d328ae

SHA-256:
48ec5bc7eb21935b9f1c5591aaa3e8e52378afff39d417a14702f044dbffad0d

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/25/2024 9:37:35 AM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
PAK_Generic.001
7.2.86

Trend Micro
PAK_Generic.001
10.465.27

File size:
5.9 MB (6,178,152 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Common path:
C:\users\{user}\downloads\bleachbit-0.9.5-setup.exe

File PE Metadata
Compilation timestamp:
6/7/2009 7:41:54 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:zZU+HktojPiiXeikDatdrah6JOSvPOda5arw/w1WmdfgMzKQpHvSMkKxlRs+pWIU:zK5oLiiXezatBah6nvPN5arw/uWmd5z4

Entry address:
0x323C

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 58, 3F, 42, 00, E8, 09, 2C, 00, 00, A3, A4, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 58, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, A0, 36, 42, 00, E8, BC, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, AA, 28, 00, 00...
 
[+]

Entropy:
7.9981

Packer / compiler:
Nullsoft install system v2.x

Code size:
23 KB (23,552 bytes)

The file bleachbit-0.9.5-setup.exe has been discovered within the following program.

BleachBit  by BleachBit
Publisher's description - “BleachBit quickly frees disk space and tirelessly guards your privacy. Free cache, delete cookies, clear Internet history, shred temporary files, delete logs, and discard junk you didn't know was there.”
bleachbit.sourceforge.net
26% remove it
 
Powered by Should I Remove It?

The file bleachbit-0.9.5-setup.exe has been seen being distributed by the following URL.

http://katana.oooninja.com/bleachbit/.../BleachBit-0.9.5-setup.exe

Scan bleachbit-0.9.5-setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.