» torrentroversetup.exe
Overview
Analysis
File Details
Downloads (1)

torrentroversetup.exe

TorrentRover v1.0.5

John Loper II

This is a setup and installation application. The file has been seen being downloaded from www.torrentrover.com.

File name:

Publisher:

TorrentRover (signed by John Loper II)

Product:

TorrentRover v1.0.5

Description:

TorrentRover Setup

Version:

1.0.5.16425

MD5:

ee7f792fe8df61354b80976bc696885e

SHA-1:

4d2bbb817b79f0711a49661cdb4e13306a63eb6f

SHA-256:

a188a1beee82622dc0d0bed9c4d80dcf1391b86f6dac9487a2af780556bd0089

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

5/16/2024 7:11:34 PM UTC (today)

File size:

4.5 MB (4,756,184 bytes)

Product version:

1.0.5.16425

Original file name:

TorrentRover.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\torrentroversetup.exe

Digital Signature

Signed by:

John Loper II

Authority:

COMODO CA Limited

Valid from:

3/29/2016 3:00:00 AM

Valid to:

3/26/2019 2:59:59 AM

Subject:

CN=John Loper II, O=John Loper II, POBox=43844, STREET=27637 Township Road 34, L=Warsaw, S=Ohio, PostalCode=43844, C=US

Issuer:

CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

5297A54F194E2C21A2FF35340CF5CE74

File PE Metadata

Compilation timestamp:

10/14/2013 8:50:27 AM

OS version:

6.3

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

Entry address:

0x67CC

Entry point:

E8, 07, 0B, 00, 00, E9, 05, 00, 00, 00, CC, CC, CC, CC, CC, 6A, 58, 68, 68, 75, 40, 00, E8, BD, 0B, 00, 00, 33, DB, 89, 5D, E0, 89, 5D, FC, 8D, 45, 98, 50, FF, 15, 70, A1, 40, 00, C7, 45, FC, FE, FF, FF, FF, C7, 45, FC, 01, 00, 00, 00, 64, A1, 18, 00, 00, 00, 8B, 78, 04, 8B, F3, BA, EC, 88, 40, 00, 8B, CF, 33, C0, F0, 0F, B1, 0A, 85, C0, 74, 07, 3B, C7, 75, 16, 33, F6, 46, 83, 3D, F0, 88, 40, 00, 01, 75, 17, 6A, 1F, E8, 30, 09, 00, 00, 59, EB, 43, 68, E8, 03, 00, 00, FF, 15, 6C, A1, 40, 00, EB, C8, 39, 1D... 
[+]

Entropy:

7.9936 (probably packed)

Code size:

25.5 KB (26,112 bytes)

The file torrentroversetup.exe has been seen being distributed by the following URL.

https://www.torrentrover.com/download.aspx?Name=app_download_test&Location=main_button&Version=1.0.5&VersionType=installed&Referrer=&OriginalReferrer=https://www.google.com/search?q=www.torrent.com&ie=UTF-8&prmd=ivns&ei=tWZVV4yXMceTU5jdj_gB&start=10&sa=N&LandingPage=https://www.torrentrover.com/&UserAgent=Mozilla/5.0 (Linux; U; Android 5.1; en-US; Lenovo P1ma40 Build/LMY47D) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/10.9.0.731 U3/.../534.30&UserIp=37.124.150.229&UserProxyIp=

Scan torrentroversetup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.