home

installiw4m.exe

aiwinstaller

Microsoft

This is a self-extracting archive and installer. The file has been seen being downloaded from www2.zippyshare.com and multiple other hosts.
Publisher:
Microsoft

Product:
aiwinstaller

Version:
1.0.0.0

MD5:
b3f2c5568a0a892cc89fb9a770b81f37

SHA-1:
4b72c7fa34e49637f5b732d84912638e5f99fd54

SHA-256:
b904dbd99b87d36e686da64d1f86f181e4a9a62192455777bd75e5b7c6cace39

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/19/2024 10:11:44 PM UTC  (today)

Scan engine
Detection
Engine version

Malwarebytes
Trojan.MSIL
v2014.01.19.03

File size:
153 KB (156,672 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © Microsoft 2010

Original file name:
aIW.Installer.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\installiw4m.exe

File PE Metadata
Compilation timestamp:
5/23/2012 8:34:08 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:NDToaDRcNcUIbO9OiQvtz98RinnnnnnnnnnnnnnnnnraDRcNGV:NDTo2QcUYO9Svtz9SinnnnnnnnnnnnnU

Entry address:
0x1EC06

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
115.5 KB (118,272 bytes)

The file installiw4m.exe has been seen being distributed by the following 10 URLs.

http://www2.zippyshare.com/d/62254787/.../InstallIW4M.exe

http://www2.zippyshare.com/d/62254787/.../InstallIW4M.exe

http://www2.zippyshare.com/d/62254787/.../InstallIW4M.exe

http://www2.zippyshare.com/d/62254787/.../InstallIW4M.exe

http://www2.zippyshare.com/d/62254787/.../InstallIW4M.exe

http://www2.zippyshare.com/d/62254787/.../InstallIW4M.exe

http://download1338.mediafire.com/0bgxth5552vg/.../InstallIW4M.exe

http://www2.zippyshare.com/d/62254787/.../InstallIW4M.exe

http://www2.zippyshare.com/d/62254787/.../InstallIW4M.exe

http://fourdeltaone.net/.../InstallIW4M.exe

Scan installiw4m.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.