http://www.express-files.com/  (signed by Faglaro Enterprises Limited)

ExpressDL Application

2, 0, 0, 4

59776ed29a9bf70aa43d381a1a09dd4c

d252d2db877a2767a87b1c1b8c4ca3856c2ebea2

This 'download manager' is also considered bundleware, a utility designed to download software (possibly legitimate or opensource) and bundle it with a number of optional offers including ad-supported utilities, toolbars, shopping comparison tools and browser extensions.

2.2 MB (2,297,440 bytes)

2,0,0,0

Copyright http://www.express-files.com/ (C) 2012

ExpressDL.exe

Executable application (Win32 EXE)

SimpleFiles

COMODO CA Limited

12/13/2012 3:00:00 AM

12/14/2015 2:59:59 AM

CN=Faglaro Enterprises Limited, O=Faglaro Enterprises Limited, STREET=Boumpoulinas 11, L=Nicosia, S=Nicosia, PostalCode=1060, C=CY

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

10/21/2013 4:52:11 PM

5.1

Win32

Windows GUI

10.0

24576:vE39ckw/Mn7uStfSQN/O0YuuFHkcRENCLT+k76JDhnEbiUAfcL7vV7aNWOQqTM5/:vEukw/M7uStfVEPRRTX6nExceVaZTrA

0x57940D

9C, 60, 66, 89, 5C, 24, 08, C7, 44, 24, 20, EF, EB, 85, F6, 60, 68, 13, C3, 3C, E8, C6, 44, 24, 08, AD, C7, 44, 24, 40, 5D, 04, 4C, 47, 66, C7, 44, 24, 04, FE, A6, 8D, 64, 24, 40, E9, 78, 2F, 00, 00, C7, 44, 24, 44, AF, 59, 96, 00, E9, FA, EA, F0, FF, 52, 88, 0C, 24, C7, 04, 24, 6F, F8, 99, F6, E8, 97, A6, F0, FF, 8B, 42, 08, 9C, 89, 6C, 24, 04, C6, 04, 24, 64, 8D, 64, 24, 08, E9, 5A, E0, ED, FF, 81, F9, FF, FF, 00, 00, 66, 89, 0C, 24, E8, CB, EA, F0, FF, E9, 53, B3, F0, FF, 00, C0, F1, D2, A1, 11, A1, 0C...[+]

7.7090  (probably packed)

Connects to exodus.desync.com  (208.83.20.164:80)

Connects to xdsl58-246-centenario.neunet.com.ar  (190.108.246.58:14430)

Connects to xdsl-188-154-22-198.adslplus.ch  (188.154.22.198:61910)

Connects to www.servepath.com  (216.121.5.172:6881)

Connects to WIN-QTQ30GSEEHT  (222.254.182.87:54668)

Connects to ustinet-5.ett.ua  (78.154.170.126:2713)

Connects to union-tel.192.98.ru  (94.228.192.98:80)

Connects to th-146-63.tm.net.my  (210.187.146.63:63733)

Connects to teosat.pl.177.41.31.in-addr.arpa  (31.41.177.234:60033)

Connects to static-mum-182.58.168.176.mtnl.net.in  (182.58.168.176:36635)

Connects to static-89-94-61-233.axione.abo.bbox.fr  (89.94.61.233:61118)

Connects to static-79.51.99.14-tataidc.co.in  (14.99.51.79:55556)

Connects to static.ip.217.17.237.205.batelco.com.bh  (217.17.237.205:54348)

Connects to static.ip.193.188.118.5.batelco.com.bh  (193.188.118.5:29794)

Connects to shpd-178-69-145-82.vologda.ru  (178.69.145.82:52978)

Connects to shpd-178-64-228-121.vologda.ru  (178.64.228.121:29033)

Connects to s83-189-180-111.cust.tele2.se  (83.189.180.111:17476)

Connects to s55977dac.adsl.online.nl  (85.151.125.172:56385)

Connects to rwp44.pie.net.pk  (202.125.156.94:50606)

Connects to qau.pie.net.pk  (221.120.235.106:1169)