» icytower15_install.exe
Overview
Analysis
File Details
Downloads (140)

icytower15_install.exe

The program is a setup application that uses the Wise Installer installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.

File name:

MD5:

5b234cc263d81eb55a26157448f0c1d6

SHA-1:

84765fe68747973ae1b2d460a852eb46f0b293ff

SHA-256:

275722d0662815eacca4dac0d0840fd42a394f4843ed1dd25d5f2c044302929f

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/29/2024 8:50:55 PM UTC (today)

File size:

3.7 MB (3,876,864 bytes)

File type:

Executable application (Win32 EXE)

Installer:

Wise Installer

Language:

English (United States)

Common path:

C:\users\{user}\downloads\icytower15_install.exe

File PE Metadata

Compilation timestamp:

4/8/1999 4:24:47 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

49152:4SpDce8khtCKqrp6kpOv8Cwk++wetuA6DL+Az180GyLyqSnfDgnA947D2LkR6wuP:4eQerYK4kcT5G0Gpjn7Z8yLkRPZkt

Entry address:

0x1000

Entry point:

55, 8B, EC, 81, EC, 78, 05, 00, 00, 53, 56, BE, 04, 01, 00, 00, 57, 8D, 85, 94, FD, FF, FF, 56, 33, DB, 50, 53, FF, 15, 34, 20, 40, 00, 8D, 85, 94, FD, FF, FF, 56, 50, 8D, 85, 94, FD, FF, FF, 50, FF, 15, 30, 20, 40, 00, 8B, 3D, 2C, 20, 40, 00, 53, 53, 6A, 03, 53, 6A, 01, 8D, 85, 94, FD, FF, FF, 68, 00, 00, 00, 80, 50, FF, D7, 83, F8, FF, 89, 45, FC, 0F, 84, 7B, 01, 00, 00, 8D, 85, 90, FC, FF, FF, 50, 56, FF, 15, 28, 20, 40, 00, 8D, 85, 98, FE, FF, FF, 50, 53, 8D, 85, 90, FC, FF, FF, 68, 10, 30, 40, 00, 50... 
[+]

Entropy:

7.9992

Packer / compiler:

Wise Installer Stub

Code size:

512 Bytes (512 bytes)

The file icytower15_install.exe has been seen being distributed by the following 50 URLs.

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_pl&type=PROGRAM&Expires=1484864659&Signature=bclHFW4YOssrvKGRwV2~XAisn1RfD7Tb8pr833Lx69t7JQ3MpJ2XDXpU2f8eyEMDQzh3duxjKAKX-KMk5e8UmhMO5YluuuSrgU8ZhxPi1lkx5Lfq3Vl1bv3snir-bd2jlV1ZB7SgjhKCAYdfONM001P~sjhOscp4fFseriHU7OY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://icy-tower.ar.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6WOp6Wnl5g=

http://icy-tower.ar.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6KIp6KilJo=

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_en&type=PROGRAM&Expires=1486482577&Signature=Ts3u8HZ653AwMgx6khVvNp1-CEcH4bV9CEBucwp2uIDB~Esht-KiOn3QQNgrKlToa~4gLZXfSARqkfEQr2bIeaKAS20CJxbjw-avh09RgZAvCHFrsIUppUp8QcaIPffNwSvVRORP6iuNG~l~G5aXmpCfFVTwArOsat9Nq5d93L8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_pl&type=PROGRAM&Expires=1482731725&Signature=DotWh7RswyP94jkzFKv2VIVbDXqZko7trCNneiqtXT2zkjcf0jGPB06KYLkqCR39PW8YfI81WWCTYXjpIQ2~-YeKtWiD7mjxaR0sdzUuIZ-EVDbD6ffV0AAfE8aoyzyTRUbLrT2B~bUUrj4UQZtU4GCQ~qdiw8ahc1~lxVenxIM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://icy-tower.he.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6OMoqSokZg=

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_pl&type=PROGRAM&Expires=1479088816&Signature=g6xqOrlBSlRB8Nc~8hBqS0762-DoHvS7s7CZbF8G7ntSxzfSZtANYJxWTjb9CyIIr6Q60RvjjimFgec~gO0A5bVjFAO73xKPiHEfWK-aYvchhPlDZmBhsIFdqzfbbmz2gMgKcIkyX03wl0J-EJlyRXZy6i79smM1tJehgmHwpFw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_en&type=PROGRAM&Expires=1478756488&Signature=ewHID5KTzPvxZ7qcTXFc-~ftfF4hKS8Z08ZPyn1aYTMBy2ejar1C5Ux~nqKCl8A2s0Q3dPHULPk3x2imawbd9hyH5UylqruacO8NlcpY~gUMWy-if~FHA7jrHz-4OH43kYNH3zZYG9H06Lmr9O0mYulLbUPJ11G~~9O6Zfb-e0E_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?channel=0&fdh=no&id_file=28508&instance=softonic_en&Expires=1472855135&Signature=Ggm5VVUtnphjoIyN3jpK~f4NfNy~HahpGuNe4PYQJSK43kQRlo6N4P20MESg58SojrQshhXf2k6vRQ8IpwOee0pZP1KS8d0sM5QbkPodyAnQlszlwJns67KfR6YrY7MHx0RlA1xe6LcKU7gxdhbs5U2ZevidHU09HOtDu7a8cs4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_en&type=PROGRAM&Expires=1478730737&Signature=A9nBry8TmvJWaK8o18q41XC5EHI6BS4ENkOBIjtbSYreLKVfTYugkAdOn~oi-8FVv3EAZiQbKDXHrz5-4NTbMykPqkQxd1jp1iZZCk3FrLt2ddHJnx10RyuAzHBw8Ay0ciGnGDLHx02n6tlB4wF1WMef4hCAwnN58WyX7vCRzc0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_en&type=PROGRAM&Expires=1470779373&Signature=G2yuMg5QBF0QnUzBU4L1pzfikpLCyqyhuCvkWZGT5-PV4VqhLIfPCXokiBll1Rb2KLHqPjCoOuF9ZK~SnGY9dlXfvgDrbyW8NaJA1qpPa-GUe23SXv7GrItCyu1gRSIk~HeO8RLnBSERz-gfoddxTdLDI7S2snjjED9kgUJeWrc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_en&type=PROGRAM&Expires=1482038207&Signature=YgjyX-uJJTgipjF6-QFbBxdPFwtQuVbyWh-NNaHN-M9-wysidlbdfTQBZ0JROHsfZ0fRcncvV-dMOWZv8jgQBgDl7rkjtBymddJ~FKU2GfIJBsgAOlKFfH9dzyzmkxchnBVRFbSgkp3sC-iBK0ACSB8bhFWa2cj1QdObPsQ-Sxg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://icy-tower.da.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6eLoZ2nkpU=

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_fr&type=PROGRAM&Expires=1486602886&Signature=I5lhm6AvOmEJ1TsSthkLiFfIDVwhoLh201Ri7PEw72h0-yK4Pvf6ruGJr70uHHCz5TtVONwlIrJx3Lqu4Cg2Qa8hALXqpZtROPJbzn99ekJoyh6gujk2e58F6OkpTldHTcNR0hWBdvyd34bDCKVZbZe5DIT~z5LoKRtTbrdX7tM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_en&type=PROGRAM&Expires=1475963421&Signature=OSK2IDzJMRXXwfB8mbHzNMpCvN60TfTgVhM8RS-3AKGljuuvP5rbPSazynl7QNNJrhOzV8OkV2FNVgPrUmsiWG1h0X7Vyd6iF8KOvfCL7i6biuJ9yeFpwv3w4T2cGWACvXMg7mAdNMFSoHPWF6MKzg1cMnpE1Xk9v3W7JzXnoSQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_pl&type=PROGRAM&Expires=1482198061&Signature=MSqlU-cIMAle18ZUyXf67e~BVS~e0~vooC2pFmnGzVPqO~20UxfXCEuiojxD0O8k4YUIQoPIFG0Us7TMZt5YWtWu-eAmKqfD2ztHWqBp3xrRm1RCcYVijskqsl7VOLopDnGBQkeZ6HnuQgzLgy-fzq1xr3~D6JRJ7DZhTIAQjm8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_en&type=PROGRAM&Expires=1483909992&Signature=gNkhXkcyAtPHwDUbRPNC4oMjDd2XHNr7gPU4LQ4IxrLmDQnIzzBUpOOKAuDFXTW2atcCtn~t2XCj57cqbeW045sEbnjVxBvX~ICyllvW3BIhxZzN6EOu5yBLMZ3ZtyZnPkpFYmAg5gPrweyXN80PSYdz-xWSTqGFrhqBWc~clck_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_fr&type=PROGRAM&Expires=1486378757&Signature=iTAo2SfvtX95Kuzefhu7vZqN4B-1UhMEO0lCFfGrLjYkbC-Pma084UCf-f9~kGsrkYnjD5UnnN3~xr1ZaJWpK71vvuoEkfpzSaYrCeXeq2iw1a4fwpuWXWR3yWUoKdReQYgYMQUrZN8yREwmIF487XqP2T5WSnPerVGSvgeHm3U_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_pl&type=PROGRAM&Expires=1479876223&Signature=WemiDfak9TYzwjInsTh1RDYNNxDUqAY~swkni~YNvuoomjIxU~vZAc4AejG7lH4maRsszDejJAHiioKzXhWel5qrRQlmx0A8sTU1Y~6iU945fLsXSlICEagyyMjTC835f9cGO6WDKtNaAN29jjS3-gBDvLyq6-QMnCoCTlqIZ6U_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_pl&type=PROGRAM&Expires=1480392228&Signature=PwsVFREyxAaLm3T~f2ub9-BNmzRIKDQ-Ds4H6IkS9mEPb7ssZXgHb9QYzADtveespcp1SvQLjEmlJHfZtx72dZuJ-nnjB44WFOihX7Jti~Sj6QlZMMGU0JKjU9J5UF1TPyd~ECdwyrftSBaALMomspvsc8ROIOE-uS1r5ON-AsA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://icy-tower.ar.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6aOoZ2omps=

http://icy-tower.he.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6SNpqWgkZk=

http://icy-tower.he.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6SPoaOjlJw=

http://icy-tower.he.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6KOpaGok5k=

http://icy-tower.he.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6CPp5-hk5k=

http://icy-tower.he.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6aLoJ2nmJU=

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_fr&type=PROGRAM&Expires=1470469869&Signature=CjIh-erekwJDaTViYGSkjVqMuZNxqnZqYqHfJ2nDHqhadU9O4t4E2W7omBzpgkEhZmUud14HZVWuhITGIYNLAj1f4RIErSsE44t~ChHFuEkuRK~ljTo9fWxMpLMWxcv4DlXTD~AywsDEjMfnVcO-Imr~E8mDbfDnsgl7mdwF-Sk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_en&type=PROGRAM&Expires=1477414904&Signature=X6NDqB-nLYhILx75wRabsjAURo5MyKHxkGT0SnTtYpx7sShzof06wZK-fuhmB0w2j0JU9FhEwpETKR9xYxWikOlIqZqp1BTn6hP2BqJy5NjFuAfENR9sMj1OxqGH9fEzg8nxnhGFrs6zyR4SpPOT4gzJrnLEZEX7MaQvKksn8x4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_en&type=PROGRAM&Expires=1478382078&Signature=DYBJfjkfphas~bEKL5Llno2IOm4HLd~dKx~ecmaLo16nhXcYPMzwWKO-A8blue6C99wqnQNMCpPyEufBTI-ASu2pRc9VfBOOMnK8WLm-de1cw3TZleM3j1VCVlrFfta15aDOwYHGkI5Iqx8LsLMqH2C7t52YFE3YlaZngguWAtA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

http://gsf-cf.softonic.com/847/65f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28508&instance=softonic_en&type=PROGRAM&Expires=1482988878&Signature=WVEsKYMcQQB8At3TrGTXQhdvVtMw3yzsBYAUGRCCE7J3WkwpF-9YDJZhAfvIhKrG1e~qQ22wegFdAdc9qtrG1fLVXyQ-H9ccxT-RmBHFvhXKfHx~Uk0cbE7~TUN4w4TdYsEJeflTA-LOVHbUvgZ9t0hEGBZSLjLX1g~3L~C9Ms4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=icytower15_install.exe

Latest 30 of 140 download URLs

Scan icytower15_install.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.