firefox setup 26.0.exe

Firefox

Mozilla Corporation

This is a setup program which is used to install the application. The file has been seen being downloaded from darman.parsianinsurance.ir and multiple other hosts.
Publisher:
Mozilla  (signed by Mozilla Corporation)

Product:
Firefox

Version:
4.42

MD5:
c5c5de801c3d3ee767574893a7df656d

SHA-1:
2d8aa57130f889b8e4adb7e635e6e1a134524800

SHA-256:
87d4fc5329ed6a74e0b65470219eb6ef928376d5d32c3d3ba59f6563b2974702

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
9/22/2017 5:27:34 AM UTC  (today)

File size:
22.9 MB (24,039,048 bytes)

Product version:
4.42

Copyright:
Mozilla

Original file name:
7zS.sfx.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\firefox setup 26.0.exe

Digital Signature
Authority:
DigiCert Inc

Valid from:
9/17/2013 10:00:00 AM

Valid to:
9/21/2016 10:00:00 PM

Subject:
CN=Mozilla Corporation, O=Mozilla Corporation, L=Mountain View, S=CA, C=US

Issuer:
CN=DigiCert Assured ID Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0511EAF8579E2662BE622DE5AE0CD408

File PE Metadata
Compilation timestamp:
6/15/2013 2:50:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
393216:lqAZlavnrC/0aYLer9r9O38lD77MWUqiiD/mryNItljgw4ukROLy+bS/XNyLURSH:+vn+8a9r9O3OgWM3EIXXNkROLyXkXH

Entry address:
0x21DE0

Entry point:
60, BE, 00, 80, 41, 00, 8D, BE, 00, 90, FE, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75...
 
[+]

Entropy:
8.0000

Packer / compiler:
UPX 2.90LZMA]

Code size:
40 KB (40,960 bytes)

The file firefox setup 26.0.exe has been discovered within the following programs.

360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
Firefox has established a reputation as one of the most innovative web browsers in the market.
www.mozilla.org
9% remove it
Toolwiz BSafe  by ToolWiz
www.Toolwiz.com
About 9% of users remove it
 
Powered by Should I Remove It?

The file firefox setup 26.0.exe has been seen being distributed by the following 50 URLs.

http://darman.parsianinsurance.ir/Firefox Setup 26.0.exe

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://filehippo.com/es/download/file/.../

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://downloader.ez-download.com/download.php?id=9527e2a6879911e89a89c8977cfd2a9681f77e59B&z=0&p=eyJweSI6ImV6IiwicnMiOiJnb29nbGUiLCJydCI6InNlYXJjaCIsImMiOiJpbiIsIm8iOiJ3aW43IiwiYiI6ImNoMzQiLCJ1X2lkIjoiZXpfNTMzYmJmNWE0NmQ5ZjYuOTMzNDkyMTAiLCJwYV9pZCI6IjAiLCJzdF9pZCI6IjAiLCJzcF9pZCI6IjAwMDAtMDAwMCIsInRzIjoxMzk2NDI0NTM4LCJrdyI6Im1vemlsbGEiLCJjdSI6ImRvd25sb2FkIG1vemlsbGEgZmlyZWZveCIsImNhIjpudWxsfQ==

http://filehippo.com/download/file/.../

http://letoltes.szoftverbazis.hu/XjL12d8zM2aPYhrSn8dIJQ/1444589334/.../Firefox Setup 26.0.exe

http://filehippo.com/download/file/.../

Latest 30 of 68 download URLs