» poweriso38.exe
Overview
Analysis
File Details
Downloads (165)

poweriso38.exe

PowerISO Setup

Power Software Limited

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from lb.cdn.m6web.fr and multiple other hosts.

File name:

poweriso38.exe

Publisher:

Power Software Ltd (signed by Power Software Limited)

Product:

PowerISO Setup

Version:

6.5.0.0

MD5:

4f0ea6898c1e3d5f0d9d271eafc1f83c

SHA-1:

fe374742e44f33468923ee1a1bc5dc22c8568685

SHA-256:

cd8b3c286a0cda8b5c10eb7efa1d885d4845e300babf928c48d50056e2dac3dc

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

False Positives:

A number of engines detected this file but were erroneous detections (false positives).

Analysis date:

4/25/2024 4:55:16 AM UTC (today)

File size:

2.7 MB (2,861,392 bytes)

Product version:

6.5.0.0

File type:

Executable application (Win32 EXE)

Installer:

NSIS (Nullsoft Scriptable Install System)

Common path:

C:\users\{user}\downloads\poweriso38.exe

Digital Signature

Signed by:

Power Software Limited

Authority:

VeriSign, Inc.

Valid from:

3/27/2014 3:00:00 AM

Valid to:

6/26/2017 2:59:59 AM

Subject:

CN=Power Software Limited, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Power Software Limited, L=Hong Kong, S=Hong Kong, C=HK

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

227EFDF22825BA270530FB09D52B32F8

File PE Metadata

Compilation timestamp:

12/6/2009 1:50:46 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

49152:+hs7eeQ3tXtjle3acwY98sb6ymwWZ+RyIN4z9fa0FM8RnPrFLzths8WQVNsdigrl:UKeeoXhYqc78sb6ymTZvU4Za0dnZtWQU

Entry address:

0x323C

Entry point:

81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 58, 3F, 42, 00, E8, 09, 2C, 00, 00, A3, A4, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 58, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, A0, 36, 42, 00, E8, BC, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, AA, 28, 00, 00... 
[+]

Entropy:

7.9936

Packer / compiler:

Nullsoft install system v2.x

Code size:

23 KB (23,552 bytes)

The file poweriso38.exe has been seen being distributed by the following 50 URLs.

http://lb.cdn.m6web.fr/d/c/a/8f521b74ad4874bddcf0f1968d47ef43/57bed592/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/c05503b20a1b84b55e4ff94a1c0695b8/57f6992d/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/1d371898aeb8325c17d4572e96d99760/58682ac5/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/64ac58c09bd54eca9a202879f21d64df/57c5f75c/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/01cfbfd21bb3911bf75945315112641a/58a0581b/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/a5e224e1a3ee68f3745c7322700a2ba0/58873d4c/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/f86bbc69288fd85402ba49a5d882a871/58028fbf/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/aa8bb24edee88d3f421ca57321373fde/58885d2f/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/b3c03e076d31ac15043b14fb3952ab54/588253a8/soft/.../poweriso_6-6_fr_43110_32.exe

http://www.szoftver-zona.hu/letoltes/cd_dvd/emulator/.../poweriso

http://lb.cdn.m6web.fr/d/c/a/7a596338719001c8b91cd68bcac63b27/58a86b84/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/8fa48a3c14ea1f6307c4cb71bd3b9618/58a37805/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/7e7760958200d7ffe62a2b74d60f1c9f/5870e922/soft/.../poweriso_6-6_fr_43110_32.exe

http://files.freetrialdownload.com/19/187301/.../PowerISO6.exe

http://lb.cdn.m6web.fr/d/c/a/ce036674eeb8ea2e160c1f4238f47503/581e635d/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/f0209f401d8a1fc38bc1f124bce210ef/5853edd5/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/3e9f1c91ffb7b1286a9023e9abc0b291/57989470/soft/.../poweriso_6-6_fr_43110_32.exe

https://tinhte.vn/.../aHR0cDovL3d3dy5wb3dlcmlzby5uZXQvUG93ZXJJU081LmV4ZQ==

http://lb.cdn.m6web.fr/d/c/a/4997b48b15f949adea79fc5f07b353e4/57f8baec/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/51a6ee6e2ac94d74e5350513b88449c5/57bd94a9/soft/.../poweriso_6-6_fr_43110_32.exe

http://indir.gezginler.net/i/17309/.../

http://lb.cdn.m6web.fr/d/c/a/2811e5df896a956fc3712a6ad11db217/58597a6a/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/029bec9a9594c090944214bd28993bda/582109da/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/d7686a744ffd87b370388e04981b0a6d/5810de87/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/19d9e34ffd024b6c24e76ddc883599c0/586294ca/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/3b18be9fee1dc885f60d46485eb0caad/5822c437/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/727fae610d1f3eba2fccd95d57893164/582b5d10/soft/.../poweriso_6-6_fr_43110_32.exe

http://lb.cdn.m6web.fr/d/c/a/1792411d85292f76ed6c68d41437d143/58433a97/soft/.../poweriso_6-6_fr_43110_32.exe

http://d210.cdn.m6web.fr/soft/.../poweriso_6-6_fr_43110_32.exe

http://indir.gezginler.net/i/17309/.../

Latest 30 of 165 download URLs

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.