home

PackageLauncher.exe

NVIDIA Package Launcher

NVIDIA Corporation

This is a setup program which is used to install the application. The file has been seen being downloaded from de.download.nvidia.com and multiple other hosts.
Publisher:
NVIDIA Corporation  (signed and verified)

Product:
NVIDIA Package Launcher

Version:
1.0.3

MD5:
6df71bb8d1d7d054c4746a845611d28e

SHA-1:
128be429864a8efd02cd742adef2ad33c8647256

SHA-256:
af839016263077a3a9fa57a14477f61e774b066168e3cc7f6da6253fca784178

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/27/2024 1:31:49 AM UTC  (today)

File size:
11.2 MB (11,707,808 bytes)

Product version:
1.0.3

Copyright:
Copyright © 2013 NVIDIA Corporation

Original file name:
PackageLauncher.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\packagelauncher.exe

Digital Signature
Signed by:
NVIDIA Corporation

Authority:
VeriSign, Inc.

Valid from:
9/1/2011 8:00:00 PM

Valid to:
9/1/2014 7:59:59 PM

Subject:
CN=NVIDIA Corporation, OU=Software, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=NVIDIA Corporation, L=Santa Clara, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
43BB437D609866286DD839E1D00309F5

File PE Metadata
Compilation timestamp:
2/20/2013 7:52:21 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
196608:euJdW0UaDnv3drHnl6ZjDtUZOhaUfODrrHEVBb5XA14506SA+1Uy3qrNfdaeu:eHtEvNrHngZXKZzUGD3EVBbJAC+9A+1L

Entry address:
0x50341

Entry point:
E8, 10, B0, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 14, A1, 54, FC, 48, 00, 33, C5, 89, 45, FC, 53, 56, 33, DB, 57, 8B, F1, 39, 1D, 98, 18, 49, 00, 75, 38, 53, 53, 33, FF, 47, 57, 68, 10, 45, 47, 00, 68, 00, 01, 00, 00, 53, FF, 15, 08, 12, 47, 00, 85, C0, 74, 08, 89, 3D, 98, 18, 49, 00, EB, 15, FF, 15, 4C, 12, 47, 00, 83, F8, 78, 75, 0A, C7, 05, 98, 18, 49, 00, 02, 00, 00, 00, 39, 5D, 14, 7E, 22, 8B, 4D, 14, 8B, 45, 10, 49, 38, 18, 74, 08, 40, 3B, CB, 75, F6, 83, C9, FF, 8B, 45, 14, 2B, C1...
 
[+]

Code size:
447 KB (457,728 bytes)

The file PackageLauncher.exe has been discovered within the following program.

360Amigo System Speedup Free  by 360Amigo
360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
 
Powered by Should I Remove It?

The file PackageLauncher.exe has been seen being distributed by the following 12 URLs.

http://de.download.nvidia.com/GFE/GFEClient/.../GeForce_Experience_v1.5.exe

http://ru.download.nvidia.com/GFE/GFEClient/.../GeForce_Experience_v1.5.exe

http://tr.download.nvidia.com/GFE/GFEClient/.../GeForce_Experience_v1.5.exe

http://cn.download.nvidia.com/GFE/GFEClient/.../GeForce_Experience_v1.5.exe

http://pl.download.nvidia.com/GFE/GFEClient/.../GeForce_Experience_v1.5.exe

http://kr.download.nvidia.com/GFE/GFEClient/.../GeForce_Experience_v1.5.exe

http://www.lo4d.com/get-file/nvidia-update/.../

http://tw.download.nvidia.com/GFE/GFEClient/.../GeForce_Experience_v1.5.exe

http://uk.download.nvidia.com/GFE/GFEClient/.../GeForce_Experience_v1.5.exe

http://dl.cdn.chip.de/downloads/.../GeForce_Experience_v1.5.exe

http://fr.download.nvidia.com/GFE/GFEClient/.../GeForce_Experience_v1.5.exe

http://us.download.nvidia.com/GFE/GFEClient/.../GeForce_Experience_v1.5.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.