home

Glass2k.exe

Glass2k

Chime Softwares

This is a setup program which is used to install the application. It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘Glass2k’. The file has been seen being downloaded from download.softpedia.com and multiple other hosts.
Publisher:
Chime Softwares

Product:
Glass2k

Version:
0.09.0002

MD5:
d9835715ed9c58e3eccd754082abf372

SHA-1:
0ab4374f4236bfbc273214810ef6cea7a875535a

SHA-256:
e8efcbcfea118a6dd2a25e396d0db89988589dd6e4dec078de18ea1c204fe515

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/19/2024 9:13:05 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.CDB
1.3.0.4613

File size:
55 KB (56,325 bytes)

Product version:
0.09.0002

Copyright:
Chime Softwares

Trademarks:
Glass2k

Original file name:
Glass2k.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
12/14/2001 9:40:00 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
768:3toFK0qQEG1rQZKaJx8pNylGw2GJyCRsNk3caGWUg/3Zzz33LAZp9XRm:32f1r+KOx8XK1Bqk3capv/Zf3yjhm

Entry address:
0x1B08C

Entry point:
E9, A6, 00, 00, 00, 9C, C9, 41, 00, 44, B0, 41, 00, 48, B0, 41, 00, 00, 00, 00, 00, 9C, 49, 00, 00, 4E, B1, 41, 00, 4E, 65, 6F, 4C, 69, 74, 65, 20, 45, 78, 65, 63, 75, 74, 61, 62, 6C, 65, 20, 46, 69, 6C, 65, 20, 43, 6F, 6D, 70, 72, 65, 73, 73, 6F, 72, 0D, 0A, 43, 6F, 70, 79, 72, 69, 67, 68, 74, 20, 28, 63, 29, 20, 31, 39, 39, 38, 2C, 31, 39, 39, 39, 20, 4E, 65, 6F, 57, 6F, 72, 78, 20, 49, 6E, 63, 0D, 0A, 50, 6F, 72, 74, 69, 6F, 6E, 73, 20, 43, 6F, 70, 79, 72, 69, 67, 68, 74, 20, 28, 63, 29, 20, 31, 39, 39...
 
[+]

Packer / compiler:
NeoLite v2.0

Code size:
28 KB (28,672 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Glass2k

Command:
C:\windows\bricopacks\leopardxp\glass2k.exe


Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Glass2k

Command:
C:\windows\bricopacks\leopardxp\glass2k.exe


The file Glass2k.exe has been seen being distributed by the following 12 URLs.

http://download.softpedia.com/dl/d94c39476b014aa192331db0c4fa1385/5820d617/100034730/software/desktop/.../Glass2k.exe

http://dc403.4shared.com/download/.../Glass2k.exe

http://gsf-cf.softonic.com/0ab/437/.../file?SD_used=0&channel=WEB&fdh=no&id_file=55879&instance=softonic_de&type=PROGRAM&Expires=1469932930&Signature=VnSrFbfacZjEXSK-hlg4kzYoBkvcrTUr5zeZ9mC-wvON-urDHxSP7m7hoMn8OG3w1w6QJLMJ91YwHZ~KjG4IBkF4WkCG~Usx5rnk855s-bmGU9zBWvaHzD-h9w4lgu6tSQ1H-iPwFKJ1mkTyaEwIfx-6sF3gLABko8MIJeExoa8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=Glass2k.exe

http://download.softpedia.com/dl/6acf92c249d4806dc1583a816e32ed05/573e73e3/100034730/software/desktop/.../Glass2k.exe

http://download.softpedia.com/dl/1ee18837f67d382cded961df4fae0334/57ded19c/100034730/software/desktop/.../Glass2k.exe

http://download.softpedia.com/dl/a1fb6fd49efb5fd372f4839c526a0038/5770c957/100034730/software/desktop/.../Glass2k.exe

http://download.softpedia.com/dl/ac2a9c7c8f5aedd65be70c33e926eb9f/565bf3de/100034730/software/desktop/.../Glass2k.exe

http://gsf-cf.softonic.com/0ab/437/.../file?SD_used=0&channel=WEB&fdh=no&id_file=55879&instance=softonic_en&type=PROGRAM&Expires=1461721284&Signature=INKpzrZDrwSy9CbMthywUfLGCmu~lJgiVM8B9mWkFus8jo9gw5Gk72x4kyljMamKKpegPp6ZzftKupQfbff6vn0vN5D3odbs-1ac7SslhhHCVNaolb-Ff5OarC0GFuG9OHZmLsa9Tbx9ClIJXZrUS18UDjBx2onZMR2ZcDasvKA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=Glass2k.exe

http://download.softpedia.com/dl/deee47c55ab424df551aa2d92960fa09/570e6293/100034730/software/desktop/.../Glass2k.exe

http://glass-2k.software.informer.com/.../

http://gsf-cf.softonic.com/0ab/437/.../file?SD_used=0&channel=WEB&fdh=no&id_file=55879&instance=softonic_en&type=PROGRAM&Expires=1450545846&Signature=icLYPD2ngekmN8tK1gjfLj8vwnryjJsBpNS0OVJWsAataqsWGZUdiNUjaqWGmeoqsy5DPPi3AOf2ihvHoCJLpk1MDhPxrKcayd0Vf11bQPGId3xmzjP2GYlogW50~waS4uj-oJPlBnhI-cW3MWLevMJSL3bWi6w2qpnUaiAdc9k_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=Glass2k.exe

http://chime.tv/products/.../Glass2k.exe

Scan Glass2k.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.