» nero50.exe
Overview
Analysis
File Details
Downloads (25)

nero50.exe

Nero - Burning Rom!

ahead software gmbh im stoeckmaedle 6 76307 karlsbad, germany Phone: ++49-7248-911-800 Fax: ++49-7248-911-888 e-mail: info@ahead.de

This is a setup and installation application. The file has been seen being downloaded from software.oldversion.com and multiple other hosts.

File name:

nero50.exe

Publisher:

ahead software gmbh im stoeckmaedle 6 76307 karlsbad, germany Phone: ++49-7248-911-800 Fax: ++49-7248-911-888 e-mail: info@ahead.de

Product:

Nero - Burning Rom!

Description:

Nero Installer

Version:

5, 0, 0, 3

MD5:

86995dacb5cc846ccac5259fa1733a98

SHA-1:

5414507fbf243da9ab5b226b7a20edf3ef547b51

SHA-256:

e69418b7e7f9bb9e475ee0b78cd795ef1704b4a9e2e8cb096b3e461ba6c967d1

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

5/4/2024 2:01:21 AM UTC (today)

Scan engine

Detection

Engine version

Bkav FE

HW32.Packed

1.3.0.4959

File size:

4.8 MB (5,033,984 bytes)

Product version:

5, 0, 0, 3

Original file name:

Nero_setup.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

File PE Metadata

Compilation timestamp:

5/3/2000 7:14:10 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

98304:YDWt6eKG/TAuWfF2ypAA4S+cvimg8X64ymsHIU3NFrZtoQ8xi:yWt6/Sye3S+cJX6HI4ttoQ8

Entry address:

0x4AEB

Entry point:

55, 8B, EC, 6A, FF, 68, 00, 39, 8C, 00, 68, 68, 84, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, 9C, 20, 41, 00, 33, D2, 8A, D4, 89, 15, D0, DF, 8C, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, CC, DF, 8C, 00, C1, E1, 08, 03, CA, 89, 0D, C8, DF, 8C, 00, C1, E8, 10, A3, C4, DF, 8C, 00, 6A, 01, E8, 79, 27, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, C3, 00, 00, 00, 59, E8, 51, 1C, 00, 00, 85, C0, 75, 08, 6A, 10, E8, B2, 00, 00, 00, 59, 33, F6, 89, 75... 
[+]

Entropy:

7.9931

Developed / compiled with:

Microsoft Visual C++ v6.0

Code size:

68 KB (69,632 bytes)

The file nero50.exe has been seen being distributed by the following 25 URLs.

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ4MjAzMzYyMjtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6ImQwYTU5NWRmZThhMzM4NzRlNTljZjk4ZGI5YjFhZDVjIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3NzE2NTU4NDtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6IjVkOWVmNzA2NGRjMWM1MDMxNzQxNTBiZjdhMDBjZTE3Ijt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3NTgyMzgxOTtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6IjdlYjMzNWVhODY5OTc1NDNlZGUzMmUxNWJhOWEzNWIzIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3NzkwMzI4MjtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6Ijg3NTczNWMwMWE2ZDc3ZWUyNTQ4YzEzOWVlMTMzNGYzIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ2MTk2MjU0MztzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6IjRjYmRmYTA2MjU4MDRjM2IwZWY3NDQyMzRiMWY0ZjEwIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ4MTU5OTM1MztzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6IjlhMzk3MTZlMmFjZTY0MjY3ZWZiMGRkYTYyMjBlMmFhIjt9

http://www.brothersoft.com/d.php?soft_id=61518&url=http://usfiles.brothersoft.com/mp3_audio/.../nero5003.exe&name=Nero

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ2MDA0NDE1NDtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6ImIyZmZhODg1OGY3MzgzMDZiNjc2YTQyYzNjNjQ3MzJjIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3ODgwMDY3NDtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6IjFkZmZlMGVhZTliMDZmMjc5NTlhNmU0MjM3ZWZhNWU0Ijt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3MzI1MTE4ODtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6IjJkYjY2YmQ2ODM1OWM1OTc0OTk0MTlhMTQ5ODQyNjA0Ijt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3MzI3MDQ1NjtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6IjNkYmJkN2NjNzkyY2ZiYjkwZmRkNWUxNzI3ZmFkMDhlIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3MzUwMzM2NztzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6IjIwN2EwNjAzYzhiNGZiNjIzYmRjMjRlOTA3MzE3N2U1Ijt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3MTk1MTA4NTtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6IjZiYjhmNDBkOGU2NjgwYjZlNTJmOGE4OWY2MDQ0ZjExIjt9

http://www.brothersoft.com/d.php?soft_id=61518&url=http://files.brothersoft.com/mp3_audio/.../nero5003.exe&name=Nero

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3MjI5MTQwNztzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6ImM5Y2JmYzc2YjY2OGU1NmQyODg3MDgwZDdhMGE5YzJiIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ2NDg2OTAxNDtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6ImEyMjRiOGNiYTg1OGZmNDMyOGQzOGUzNzk1MzE1NDczIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ2MTkxNDIyODtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6ImI0OGZlODEyNGUyZTlmMDMyYWRlYWQ4NGUzYzhkZDY0Ijt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ2NTk3ODExMjtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6ImMzNzc1NDYwZWZmYWRiYzc5ZTkyYWRmZmI4NTczMjE2Ijt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ2MDA2NDAzMTtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6ImViZGY1ZjA3ODhjMDIyMjM3MTljOWQ0ZDdmOGJlNWY1Ijt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ1NjI0OTc1MjtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6ImJkMzE5Y2JkZjY3NzZiNjNkYzYzODhkYjMzYTcxZGRjIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ1NzQwMjk2NjtzOjI6ImlkIjtpOjYyNzU7czo0OiJmaWxlIjtzOjEyOiJuZXJvNTAwMy5leGUiO3M6MzoidXJsIjtzOjU4OiJodHRwOi8vd3d3Lm9sZHZlcnNpb24uY29tL3dpbmRvd3MvbmVyby1idXJuaW5nLXJvbS01LTAtMC0zIjtzOjQ6InBhc3MiO3M6MzI6IjJhM2JhZjRhMWI3MjVkYjE2OGUxNzVhNzIzMzZlZjM0Ijt9

http://www.oldversion.com/windows/download/.../nero5003.exe

http://down01.wxsrv.com/descargando/024/2070/nero-5-lite/.../nero-5-lite.exe

http://downloaderfile.brothersoft.com/wind_down.php?url=http://usfiles.brothersoft.com/mp3_audio/.../nero5003.exe&name=Nero&soft=61518?EsetProtoscanCtx=d7eedb8

http://files.brothersoft.com/mp3_audio/.../nero5003.exe

Scan nero50.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.