» calibrize_2_setup.exe
Overview
Analysis
File Details
Programs (1)
Downloads (21)

calibrize_2_setup.exe

Colorjinn

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from calibrize.softonic.com and multiple other hosts.

File name:

Publisher:

Colorjinn

Description:

Calibrize Setup

Version:

2.0

MD5:

992f1f3ca1e6a172bea54ee02b0a1a2e

SHA-1:

dbd82ab776ef349a8704f02271641dcd29f1caa0

SHA-256:

22b266a1c35cab22f0df2a4ec152496907df8153ad774db8f17c54a2a4627fa5

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

5/9/2024 5:43:05 PM UTC (today)

File size:

1.2 MB (1,212,187 bytes)

File type:

Executable application (Win32 EXE)

Installer:

Inno Setup

Language:

English (United States)

Common path:

C:\users\{user}\downloads\calibrize_2_setup.exe

File PE Metadata

Compilation timestamp:

6/19/1992 6:22:17 PM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:h2l406T9ULDuABbQYqR7vxid5+YXr3uM2I4RADFx1H+E:h2qDmLDxBbQ35iRXr3u1IZv1H+E

Entry address:

0x998C

Entry point:

55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 3A, 97, FF, FF, E8, 41, A9, FF, FF, E8, 6C, CB, FF, FF, E8, B3, CB, FF, FF, E8, 12, F3, FF, FF, E8, 79, F4, FF, FF, 33, C0, 55, 68, 32, A0, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, FB, 9F, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 9B, FE, FF, FF, E8, 06, FA, FF, FF, 8D, 55, F0, 33, C0, E8, B0, D0, FF, FF, 8B, 55, F0, B8, E4, CD, 40, 00, E8, EB, 97, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E4, CD, 40, 00, B2, 01, B8... 
[+]

Entropy:

7.9236 (probably packed)

Code size:

36.5 KB (37,376 bytes)

The file calibrize_2_setup.exe has been discovered within the following program.

Pixia by Isao Maruoka

www.pixia.jp

About 9% of users remove it

The file calibrize_2_setup.exe has been seen being distributed by the following 21 URLs.

https://calibrize.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWt0sI8aa3KPl0C9oyM84N0MfBu0Uc p0awMca3IyQxMJqI1iIszZUm1UOuF5ja/4QA5mX C/a9PtZoKllU4h7R4e/.../CsB7tIZaM7ZcLtwRjQ=

http://gsf-cf.softonic.com/dbd/82a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=75294&instance=softonic_es&type=PROGRAM&Expires=1451294402&Signature=ZrBpz-ChnVU6up4bwPVxoNftnWcE-env6wWmJI4jILv~EH2FJGj3cx6NdAcV-JXqY5YBbXhiM-VaUshDF97KZeo8W6P6KC8o6wPxmwqnoHTFdVE9uNQaL4QFPLYmPignzPJfZsH9Dykj6Nr6CTlaJK2G1-XXow-wagUXi2Pe9Ds_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=calibrize_2_setup.exe

http://lb.cdn.m6web.fr/d/c/a/1767c9ccd1ad945dd305764230bef472/5868117b/soft/.../calibrize-2-0_fr_375842.exe

http://download2155.mediafire.com/o1bll3l7o7hg/.../calibrize_2_setup.exe

http://calibrize.softonic.com.br/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPNbFIbvPqwG59DNzhKGKPopOS/16MIOzRwqccoV7ljLqKYSCZkmbPEJJPghpo0o Q2y9t /7jypWR8aHcZWITxzqoLa/E1fIZ/.../NUNUhD5cIeeGipziAlU=

http://cdn.dashbundlescase.com/c?x=oPnNvXm/iJlS1jGZRmAmEmYrhkvj/MF35PT2lePTbj0=&c=HZSf7EMidJlInatq/EweT6f8VTEbc3i8H/PPrBhtLz/bY AktIwVEGxedygMFCw/T bhKqnBX/s/BdXolWiUhKHdxnJKM03hrXNhhxj BKpQJK6dVAag/ D1rHqBYR7L&fallback_url=http://.../download_51304.shtml&downloadAs=need-for-speed-shift-patch-32-bits.exe

http://down01.wxsrv.com/descargando/024/9325/calibrize/.../calibrize.exe

http://gsf-cf.softonic.com/dbd/82a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=75294&instance=softonic_br&type=PROGRAM&Expires=1474512639&Signature=OmpTNb5cDqjcts9B2lpczMBRr-8pKzaMQ5LxGk4ao89wJumYd6xO-h6YNuxlYd-acVl8d3TPNbWbBJIZQdRSWaohoV8xGUDvElJA0RTnrGLSRwZH4QP1N1aJ7R3U-r4c~vdO2RqjDPBKaPJdlMv2cLjGDEaSQDNr~nFhRObm5w0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=calibrize_2_setup.exe

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==VjJ-66hr7XcqG5qnpIucXQ5EKp8oCI1fA_kUxpZI6PekU2ZACXl8qABbnjLshHaxKgsO/messages/@.id==AA15imIAAUQtV7Q4ggQPECBiUKU/content/parts/@.id==2/raw?appid=YahooMailNeo&token=zitEzqOML3j84e6ealFTT5U7-km5qEQF52lp7AcCuBbS8WJfFDX5ZFn84GQEmVXL4QS589m2ULn4HOf3kMCF_g&error=https://us-mg5.mail.yahoo.com/.../iframemsg?id=d140aa79-a530-c098-07b8-8e99ce8ccc2d&ymreqid=9845e6e3-6e21-0e53-0149-d8001c010000

http://www.ranchsendgift.com/iZ1G3jLoo0jlm4Qo4PP5lPn_MumW1 yOTZf1L5tt9ammUVEj79zccURXp044qOHBro8alCuvC4_FrwXi0vWgQ1W90n5gHsZ5eG794NRm88RL8Gz1dPteCkaDysTNFv70ySIQnZh5FGOgiYkaFEVQXo duONF7trKkjEd8JDJyWbz3 OH6OE__KIPzd_OmA0uuk1H_xay3moqgF5y1LBIYbXXJ816QYUCoOx79jMKTzeH8B8j5qH4EgmwHi5M15CZc_VOFyBUdb_qWVM9huqs1YU9zkl59h6WXa8pXYhBf2btt_KZD7NJDX780o6UM2wxUWhUBlvt_uO7GdVKq2Ajse2vMH0xkUdySEjXAYPMdTkisENOgv6UL01Db3PnN0rzqnyJPMwLcQfmJdrcs0u8cn_wXrLWY_EbJvc_8HOQ6eph3mxW8N0Z qGSnSQa CJo4hAHL0sZa9n6158FRqBcYeHZvVz8aZuTcwyPrdo0MyMXyIOVxkjwG4 xGLgfEW8NrYQW4g3m-GzYAAES3eX4eeh6iskPoiFYUwQYcOCVUQDDf08aBuHE0SWZc qyK0bn6g66rE_tMwQM=-e

http://www.signstowerranch.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

http://gsf-cf.softonic.com/dbd/82a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=75294&instance=softonic_br&type=PROGRAM&Expires=1460605830&Signature=H~7cD7hybKTiCoeTaypQIxxplwEon0MR4sYrOSYdg~znUBlOQCpjpm2MfYBwo36MOf8myi8W9rp7ialFbn0p5OpSJyf3tzOZzOfT~JWgPEnLRp4B~PLjGFZY~dtj8XM9eTFR3xKksVurQ49F0gs1mPENMemUBzlphHoRcUSUFyo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=calibrize_2_setup.exe

http://gsf-cf.softonic.com/dbd/82a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=75294&instance=softonic_es&type=PROGRAM&Expires=1449433485&Signature=LKz7IeOTlQAF51Ivpo8c7ZWNR9CKH~-~QDyaof9NHZCFXI4POGZL6W-Sa36G2Je~9N39U8bxZ1E25i7V24H5rrkzw3rkT4lu5RW-EvRzLEjLtabwTPdP4fd9dkuAMK2HyD3X0rr-~MEHSg0o7QWxtu7vDZ2y979GzxaED3Y4NnU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=calibrize_2_setup.exe

http://lb.cdn.m6web.fr/d/c/a/f4f3328cd36f848cabffc7de776eba13/56de189c/soft/.../calibrize-2-0_fr_375842.exe

http://gsf-cf.softonic.com/dbd/82a/.../file?SD_used=0&channel=WEB&fdh=no&id_file=75294&instance=softonic_es&type=PROGRAM&Expires=1447327392&Signature=VxVwufwSXdHYedmsJIaUGywpWQ4uDnMc4LsC9s3RzHVG4aI5QXv43LafiubXdb0xoHA2nqyUx2s01KmNdPYaY5k9iS9CyTbqfZUGYepbciJ7mveRwanzKOCU0dfPwMKwaspAWb8UuA11q5cBw5L2Ol4fLOBEKV3-6xfiAziWjx8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=calibrize_2_setup.exe

http://calibrize.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWt0sI8aa3KPl0C9oyM84N0MfBu0Uc p0awMca3IyQxMJqI1iIszZUm1UOuF5ja/4QA5mX C/a9PtZoKllU4h7R4e/.../CsB7tIZaM7ZcLtwRjQ=

http://files.downloadnow.com/s/software/10/79/36/.../calibrize_2_setup.exe

http://cafeattach.naver.net/4bde57e7f3adaf735ab0d8ecd1334b3998c134d9e5/20120926_278_cafefile/.../calibrize_2_setup.exe

http://software-files-a.cnet.com/s/software/10/79/36/.../calibrize_2_setup.exe

https://s3.amazonaws.com/.../calibrize_2_setup.exe

http://s3.amazonaws.com/.../calibrize_2_setup.exe

Scan calibrize_2_setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.