home

ia_install.exe

ConWare

The program is a setup application that uses the Wise Installer installer. This is installed with IconArt. The file has been seen being downloaded from global-shared-files-lw.softonic.com and multiple other hosts.
Publisher:
ConWare

Description:
Icon & Cursor Editor & Creator

Version:
1.5

MD5:
4d53c51578cf2fe96609f3fa717e63b2

SHA-1:
42b9cd1b11b53cc948d6c909e61d936d76c358ee

SHA-256:
fcf07b6c8efea934d4efd2daec9dabd4c413a43dcda57bd5a8d192c1d2a01e80

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 1:14:19 AM UTC  (today)

File size:
554.8 KB (568,090 bytes)

Copyright:
© ConWare

File type:
Executable application (Win32 EXE)

Installer:
Wise Installer

Language:
English (United States)

Common path:
C:\users\{user}\downloads\ia_install.exe

File PE Metadata
Compilation timestamp:
8/13/2001 12:13:38 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:/5DAjOKJxK/AX3Kvewy+MVJyk8EeAMQ8wWIVZeP:/lKJxK/AKWwy+MPykfeAM6ZeP

Entry address:
0x21AF

Entry point:
55, 8B, EC, 81, EC, 2C, 05, 00, 00, 53, 56, 57, 6A, 01, 5E, 6A, 04, 89, 75, E8, FF, 15, 54, 40, 40, 00, FF, 15, 50, 40, 40, 00, 8B, F8, 89, 7D, F4, 8A, 07, 3C, 22, 0F, 85, CC, 00, 00, 00, 8A, 47, 01, 47, 89, 7D, F4, 33, DB, 3A, C3, 74, 0D, 3C, 22, 74, 09, 8A, 47, 01, 47, 89, 7D, F4, EB, EF, 80, 3F, 22, 75, 04, 47, 89, 7D, F4, 80, 3F, 20, 75, 09, 47, 80, 3F, 20, 74, FA, 89, 7D, F4, 53, FF, 15, 6C, 40, 40, 00, 80, 3F, 2F, 89, 45, F8, 75, 64, 8A, 47, 01, 3C, 53, 74, 04, 3C, 73, 75, 06, 89, 35, 58, 53, 40, 00...
 
[+]

Entropy:
7.9871

Packer / compiler:
Wise Installer Stub

Code size:
8.5 KB (8,704 bytes)

The file ia_install.exe has been discovered within the following program.

IconArt  by ConWare
www.conware.org/support/ia
About 4% of users remove it
 
Powered by Should I Remove It?

The file ia_install.exe has been seen being distributed by the following 12 URLs.

http://global-shared-files-lw.softonic.com/42b/9cd/.../ia_install.exe

http://download902.mediafire.com/yoe4uusy3kkg/.../ia_install.exe

http://gsf-cf.softonic.com/42b/9cd/.../file?SD_used=0&channel=WEB&fdh=no&id_file=24032&instance=softonic_en&type=PROGRAM&Expires=1476203636&Signature=GBAGKh1GV1-tloydIg9kV7ceX5k0C8rmNzwsTxqVc8x-xl63c-M4OJJ4pc31kyGc~ihUUwZDrONAVpPZqHtakXObWZrFGAQWDRdi2xzM6oI-5DYNKgcvHJia17UwzK2GikHS1cSPevblFLT3kqvHOW1yjjRgzabOsvnLpuiu1uU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=ia_install.exe

http://gsf-cf.softonic.com/42b/9cd/.../file?SD_used=0&channel=WEB&fdh=no&id_file=24032&instance=softonic_es&type=PROGRAM&Expires=1474845103&Signature=NUUwkgYqBmU7nG69~~XBxevv19636mIb-NO~470GWfwaWGz7HDLpLGBBM4PC5Oo7HexnV8o2B--4QRUJG1LGcdtspRiyZG9XDSuCKnj65OES~9KDkbwvmmCF3QZSC7MZANDerl-1RzmEhurSeCBgeJSlUGoI0XHJ4v-nK4Qvv3o_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=ia_install.exe

http://download.nf.pl/Download/1115/IconArt-2-0/ikona-edycja-ico/Pobierz/.../

http://gsf-cf.softonic.com/42b/9cd/.../file?SD_used=0&channel=WEB&fdh=no&id_file=24032&instance=softonic_es&type=PROGRAM&Expires=1452036477&Signature=HpyeRR7qoAvCG5xhPEDic~b17hPZO9en4fC19glqXJPp~fS8ypMxYXA8Je2E7shVgVyccR3yZ64cryKnrKgEFoxj9qrid43eEHnniM~FGShWZ5Ch8pH8sx5iLOrM4rsU5Qy3u2BmWwtleUtdI9SXkKWYGPt33TghsPFlOaXprm0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=ia_install.exe

http://gsf-cf.softonic.com/42b/9cd/.../file?SD_used=0&channel=WEB&fdh=no&id_file=24032&instance=softonic_es&type=PROGRAM&Expires=1461483084&Signature=goR6gffb748aRUabiyQhdDcGl1F3cn~-LRUSbLX5OR5a0GYW7JCtDDhGoTY7gpW14dZ6-Jjm4Kdv8V2BNM1acF9GFZtaU625tm8pBQpuLgF4iOCZiVqbqNtGWizV6IJgu85og1Y4gnBJD3McVLmvwbhJZgj1MCYn~biltFseg1g_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=ia_install.exe

http://www.conware.org/products/.../ia_install.exe

http://gsf-cf.softonic.com/42b/9cd/.../file?SD_used=0&channel=WEB&fdh=no&id_file=24032&instance=softonic_en&type=PROGRAM&Expires=1460870986&Signature=DUm3CM1EfhITrzu5~6OD-N3LwZygNCA~YCOS2EPTRClKfSNDgVycKp1zckWR7YJadIBPV61-YacPxURNenpp5ZxvW2Y9fRu-pNGTtAZaud7iE7ao7wC00-gSCpfULUyoHagi0V914MprQi11vMebM7bjlYRKD9~Xek7xCUDLy2M_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=ia_install.exe

http://files.downloadnow.com/s/software/10/95/26/.../ia_install.exe

&onid=2317&oid=3001-2317_4-10167593&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=desktop/cursors&topicbrcrm=&pid=10952661&mfgid=81753&merid=81753&ctype=dm&cval=SPIGOTWIN&devicetype=desktop&pguid=0b1473798511e5825de18711&viewguid=bBrDWVFjlVpfijZxj0M9quQy6bYNNXuqtQbs&destUrl=http://files.downloadnow.com/s/software/10/95/26/.../ia_install.exe

http://www.conware-pro.com/products/.../ia_install.exe

Scan ia_install.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.