home

BoxDualInstaller.exe

BoxDualInstaller

Box.net, Inc.

Publisher:
Box.net, Inc.  (signed and verified)

Product:
BoxDualInstaller

Version:
1.0.0.0

MD5:
28bfa4201ad874abe22abbcaa01b4317

SHA-1:
c8c12ff79c800728e1a0800fb1d09f9f1b2f085c

SHA-256:
2645a7eb1a5142936d59ff00aedd9c1d2dee013477ea55272469f5a62feaf1cd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 4:45:07 AM UTC  (today)

File size:
757.6 KB (775,832 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2012

Original file name:
BoxDualInstaller.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\boxdualinstaller.exe

Digital Signature
Signed by:
Box.net, Inc.

Authority:
Thawte, Inc.

Valid from:
10/6/2011 8:00:00 PM

Valid to:
10/7/2013 7:59:59 PM

Subject:
CN="Box.net, Inc.", OU=Unknown, O="Box.net, Inc.", L=Palo Alto, S=California, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
3AC3971B7F8047952169FD83D6A803C2

File PE Metadata
Compilation timestamp:
9/12/2012 4:53:18 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:/hgfsjNIc/00hhprbbF77777D3alUvjBgfsjNIc/00hhprbbF77777D3alUvD:/hgfs2c/Dhhp1rBgfs2c/Dhhp17

Entry address:
0x644BE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.3149

Code size:
393.5 KB (402,944 bytes)

The file BoxDualInstaller.exe has been discovered within the following programs.

360Amigo System Speedup Free  by 360Amigo
360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
Toolwiz BSafe  by ToolWiz
www.Toolwiz.com
About 9% of users remove it
Toolwiz Time Freeze 2016  by ToolWiz
About 4% of users remove it
 
Powered by Should I Remove It?

The file BoxDualInstaller.exe has been seen being distributed by the following 9 URLs.

http://lb.cdn.m6web.fr/d/c/a/0767f0cbe1fdadba5e46175e285c365d/5827128e/soft/.../box_3-4-20-0_fr_429739.exe

http://lb.cdn.m6web.fr/d/c/a/00e1d86d88ac27271502de3063140e1a/577707de/soft/.../box_3-4-20-0_fr_429739.exe

http://lb.cdn.m6web.fr/d/c/a/7e3185aa508588afb49edb42ab947c54/578f790f/soft/.../box_3-4-20-0_fr_429739.exe

http://lb.cdn.m6web.fr/d/c/a/de65c4b8be66782e41a8ca6c457ece86/575c1e1e/soft/.../box_3-4-20-0_fr_429739.exe

http://lb.cdn.m6web.fr/d/c/a/8ae99fa087f6940726e822f3d938c901/56f3bc97/soft/.../box_3-4-20-0_fr_429739.exe

http://ec.ccm2.net/es.ccm.net/download/.../BoxSyncWindows3.3.30.0.exe

https://app.box.com/index.php?rm=box_download_file_via_post

http://members.tzarmedia.com/software/content/.../1627

https://sync.box.com/static/sync/.../BoxSyncWindows.exe

Scan BoxDualInstaller.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.