» WinDirStat1_1_2_setup.exe
Overview
Analysis
File Details
Programs (1)
Downloads (1093)

WinDirStat1_1_2_setup.exe

WinDirStat

WDS Team

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from download.fosshub.com and multiple other hosts.

File name:

Publisher:

WDS Team

Product:

WinDirStat

Description:

WinDirStat 1.1.2

Version:

1.1.2

MD5:

3abf1c149873e25d4e266225fbf37cbf

SHA-1:

6fa92dd2ca691c11dfbfc0a239e34369897a7fab

SHA-256:

370a27a30ee57247faddeb1f99a83933247e07c8760a07ed82e451e1cb5e5cdd

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/19/2024 5:23:44 PM UTC (today)

Scan engine

Detection

Engine version

XVirus List

Win.Detected

2.3.31

File size:

630.6 KB (645,729 bytes)

Original file name:

WinDirStat1_1_2_setup.exe

File type:

Executable application (Win32 EXE)

Installer:

NSIS (Nullsoft Scriptable Install System)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\windirstat1_1_2_setup.exe

File PE Metadata

Compilation timestamp:

8/25/2007 6:16:04 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

12288:yCjeMsiGVBKvjxTNlZaLlcMj+wXZvQpd9nP2+ZMU2tYspZcMwr/GNd35:yCjeTZa7BTsxewXZUTP2HU2yawjY5

Entry address:

0x3265

Entry point:

81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, F4, 3F, 42, 00, E8, EC, 2A, 00, 00, A3, 44, 3F, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 00, F5, 41, 00, FF, 15, 58, 71, 40, 00, 68, 1C, 92, 40, 00, 68, 40, 37, 42, 00, E8, A3, 27, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, 91, 27, 00, 00... 
[+]

Entropy:

7.9719

Packer / compiler:

Nullsoft install system v2.x

Code size:

22.5 KB (23,040 bytes)

The file WinDirStat1_1_2_setup.exe has been discovered within the following program.

WinDirStat 1.1.2 by Bernhard

WinDirStat is a graphical disk usage analyzer for Microsoft Windows, notable for presenting a sub-tree view with disk use percentage alongside a usage-sorted list of file extensions that is interactively integrated with a colorful graphical display (a treemap).

windirstat.info

5% remove it

The file WinDirStat1_1_2_setup.exe has been seen being distributed by the following 50 URLs.

https://download.fosshub.com/Protected/expiretime=1471751480;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/0c536b77a30fa95c7b92173c471b1f4fc689246e6fa0f84640c1a952ec6185fe/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1476791899;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/c37200aebc2fde2569fc7f74991f9c6af2c4d8be2fde0a129b06b4934f68b0f8/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1483234855;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/a65943ddeec86ccd9f7e67b572544e37dbdbed0e877a19f6dfb60a061aebf984/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1465313421;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/c3376e58dcd5127680349f7534803440e16590a851b30e05f7be6d0a679cce80/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1457969223;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/05e8a2d8dd9387004acc6a206b64188c1d010a1364d42f2330a269f82971d7ee/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1480237412;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/664bd06727a0a94dbe033233b854c5798d0bb2f9d746697387d418f29598eb17/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1477502240;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/e00b28ff8e9a7e15c3a7a0018fe43ff3887ac4a876219f80c344dc0f3207d4e1/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1460663399;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/5d777fb3c298ef0f0b6325e6273198996ab171d9b50cfba2179673ca84a652e7/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1482511628;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/d6b9f8caf1aacd9959efb6fbe99e89a516fde36f8acc634818f4d595db748e60/.../windirstat1_1_2_setup.exe

https://superb-dca2.dl.sourceforge.net/project/windirstat/windirstat/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1473878812;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/dd10add1113eb5440cc0757fdcb78c75cde896eccf6da75b5ea9c3ae098197f9/.../windirstat1_1_2_setup.exe

http://download.fosshub.com/Protected/expiretime=1445987415;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/6b677c2e295756b835069b5f0f9ebb7b5abc3050af155f240d6d61dddbdb2f6a/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1467391671;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/410be64e38325ed8d9fe344dfadc663f5bc24398512f63f91b24262238ce94b6/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1486258049;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/ce57fb79ec152b7ba388368a8b02fc940a06b74ef6a32c31f41b8cd8f0968acb/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1476910369;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/e8bba92961f2e38ffe946036a41d9fe72cc3292e261263d2932b76abee5d84cd/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1479787464;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/5d057a19be9af85cc9aba8dc26ca0c33fbe9309f859a1216b0577c0dacc154d5/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1483256868;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/f88b57a629a2e982aaf55ae09d597f46c891e54304be9a01cb37c371a6aa04ae/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1464552478;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/efee4e218fecb7714b5fed36fbdc72636aa333fd4351fb5809f8c872c6cd3734/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1479159887;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/5c4680ef4076994997ef112ed1823d76c74e98828cf6de37e3a7cc760006ec8d/.../windirstat1_1_2_setup.exe

http://storage.dobreprogramy.pl/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1484791550;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/ba082c8068a3b4c6bf3c89dea05e59dbc3309a95158dc3d5407a0cd3d8f55d56/.../windirstat1_1_2_setup.exe

http://123.briian.com/forum.php?mod=attachment&aid=MjAwM3wyOTdhYmE3ZnwxNDc0Nzg0MjE3fDB8Njc2

http://download.fosshub.com/Protected/expiretime=1444153839;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/2f2adbd265dd81aad313b90ebf37b6f0c9534c63c0d6009fe7cf8b31a1620c77/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1480455455;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/7f02564308ce189f05b5e051fb9198dedc07690fbaac9f78c445a666b87ebf15/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1469503078;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/544f2a31e7b92ad0080afbbf28eb53fd1dc26544b6a6f4d894f0a84b4005a0ab/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1484610872;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/4d6a443724d2230cfc648f8cc45fa6627429d95d78607f7e35bf00bf363c65f2/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1485593718;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/b1f32e249676723e6a628e2f4eaadaf0aa5df433a824613810f01378b16d2927/.../windirstat1_1_2_setup.exe

http://download.fosshub.com/Protected/expiretime=1443678818;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/e56fac8afa2c659b3eb1c324b454370c77e7323587e27841599d187754b31ac2/.../windirstat1_1_2_setup.exe

https://download.fosshub.com/Protected/expiretime=1475346479;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9XaW5EaXJTdGF0Lmh0bWw=/022fe70052360b77b6d215aa5e8c3f2c283e5625987d1cd19515fcced8a99699/.../windirstat1_1_2_setup.exe

https://download.heise.de/software/1d115c4e3b894d9a884e8e765acfdd13/58263079/.../wds_current_setup.exe

Latest 30 of 1,093 download URLs

Scan WinDirStat1_1_2_setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.