» psafeantivirussetup{207-1427979}.exe
Overview
Analysis
File Details
Downloads (3)

psafeantivirussetup{207-1427979}.exe

PSafe Antivirus Setup Launcher

PSafe Tecnologia S.A.

This is a self-extracting archive and installer. The file has been seen being downloaded from www.softonic.com.br and multiple other hosts.

File name:

Publisher:

PSafe Tecnologia (signed by PSafe Tecnologia S.A.)

Product:

PSafe Antivirus Setup Launcher

Description:

PSafe Tecnologia

Version:

4.1.11401.16103

MD5:

13e266ac7c5138ee888a292546cb1a41

SHA-1:

01d71b34880dce96f90f08810fdfa04601c08d19

SHA-256:

46af24c474c0d98ff6681af98ab08d01adf7dc10d04ab119f752e9ece2d976af

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/25/2024 12:39:41 PM UTC (today)

File size:

558.7 KB (572,104 bytes)

Product version:

4.1.11401.16103

Original file name:

PSafeAVD.exe

File type:

Executable application (Win32 EXE)

Language:

Espanhol (Espanha - tradicional)

Common path:

C:\users\{user}\downloads\psafeantivirussetup{207-1427979}.exe

Digital Signature

Signed by:

PSafe Tecnologia S.A.

Authority:

DigiCert Inc

Valid from:

1/20/2013 10:00:00 PM

Valid to:

1/26/2015 10:00:00 AM

Subject:

CN=PSafe Tecnologia S.A., O=PSafe Tecnologia S.A., L=Rio de Janeiro, S=Rio de Janeiro, C=BR

Issuer:

CN=DigiCert Assured ID Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:

07F79AA9335B794D70779F719061AFF2

File PE Metadata

Compilation timestamp:

1/16/2014 2:51:35 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

12288:fI88g0Hb9/EW7mzpxzgfzJUngTvWtG5WzGKil8NY5D2o:fIA0HbKgLJUngTugcz5855D2o

Entry address:

0x2F5C9

Entry point:

E8, 6F, 89, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, 33, C9, 3B, 04, CD, 68, 1A, 47, 00, 74, 13, 41, 83, F9, 2D, 72, F1, 8D, 48, ED, 83, F9, 11, 77, 0E, 6A, 0D, 58, 5D, C3, 8B, 04, CD, 6C, 1A, 47, 00, 5D, C3, 05, 44, FF, FF, FF, 6A, 0E, 59, 3B, C8, 1B, C0, 23, C1, 83, C0, 08, 5D, C3, E8, 11, 6E, 00, 00, 85, C0, 75, 06, B8, D0, 1B, 47, 00, C3, 83, C0, 08, C3, E8, FE, 6D, 00, 00, 85, C0, 75, 06, B8, D4, 1B, 47, 00, C3, 83, C0, 0C, C3, 8B, FF, 55, 8B, EC, 56, E8, E2, FF, FF, FF, 8B, 4D, 08... 
[+]

Code size:

375.5 KB (384,512 bytes)

The file psafeantivirussetup{207-1427979}.exe has been seen being distributed by the following 3 URLs.

http://www.softonic.com.br/sads/tracker.php?ev=c&co=BR&sid=e9aea519b68ed6bcda27d355e9931058&upv=f64edc16c0b489895b502a7f00448bc3&z=results&sk=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBAB9D0A325A0C66CC51714148938FC8A64B77C09BECE73D3BAB34963767B548D375AC9BC0ABC2E125C9DDDBAED6845D43914DDCBF3122AA934295223A2EBBF018BCD2926D2E4692F95F7B81FE30A55A545D9599E4F9748AAB06046DAE82786F71004AB8A2D092B85865D9C3FEB590AE78AED42164D0BB4058240988E38686F00D5D3A5F6D8B42A1C706273B7759EFEB8B46B167DD68DCDF7BF772DA4A2ABE996B92E1A1C13A26C3EA01D0DF8B490068196&h=ECF1C95993F356DD1E460821F5B1E3F5E5647CDC56F002857A1F9C5D1A3AEE75&directdownload=1&f=3343739&d=http://setup.psafe.com/installers/protege/pt/.../PSafeAntivirusSetup.exe

https://static.psafe.com/installers/protege/pt/.../PSafeAntivirusSetup{204-1432634}.exe

https://static.psafe.com/installers/protege/pt/.../PSafeAntivirusSetup{207-1427979}.exe

Scan psafeantivirussetup{207-1427979}.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.