» wrye bash 304_3 - installer-1840-304-3.exe
Overview
Analysis
File Details
Programs (5)
Downloads (38)

wrye bash 304_3 - installer-1840-304-3.exe

Wrye Bash

Wrye Bash development team

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from fs-15.nexusmods.com and multiple other hosts.

File name:

Publisher:

Wrye Bash development team

Product:

Wrye Bash

Description:

Installer for Wrye Bash 304.3

Version:

3.0.4.3

MD5:

e659c0e40212a61f3b6327bbfe1bbad8

SHA-1:

93f60a4df48c76dc7236fdae388031f5a3b3417b

SHA-256:

de25a4376ab7737749edf12f0bf3c3ed1ca5f13dfff0d27c84bf20e0824cd614

Scanner detections:

2 / 68

Status:

Clean (2 probable false positive detections)

Explanation:

These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:

4/28/2024 12:23:33 AM UTC (today)

Scan engine

Detection

Engine version

Trend Micro House Call

PAK_Generic.001

7.2.95

Trend Micro

PAK_Generic.001

10.465.05

File size:

20.6 MB (21,590,707 bytes)

File type:

Executable application (Win32 EXE)

Installer:

NSIS (Nullsoft Scriptable Install System)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\wrye bash 304_3 - installer-1840-304-3.exe

File PE Metadata

Compilation timestamp:

12/6/2009 12:50:46 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

393216:Z6052QeOPsWcB2tLZeH4DH5opnYc+IH5JT3MjLQkuTN10s25MR:Z63QeOPVcAtdgUZs++JM3QkuZtQMR

Entry address:

0x323C

Entry point:

81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 58, 3F, 42, 00, E8, 09, 2C, 00, 00, A3, A4, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 58, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, A0, 36, 42, 00, E8, BC, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, AA, 28, 00, 00... 
[+]

Packer / compiler:

Nullsoft install system v2.x

Code size:

23 KB (23,552 bytes)

The file wrye bash 304_3 - installer-1840-304-3.exe has been discovered within the following programs.

Creation Kit by bgs.bethsoft.com

www.creationkit.com

About 3% of users remove it

Oblivion by Bethesda Softworks

The Elder Scrolls IV: Oblivion is an action role-playing video game developed by Bethesda Game Studios and published by Bethesda Softworks and the Take-Two Interactive subsidiary 2K Games.

www.bethsoft.com

9% remove it

Oblivion - Construction Set by Bethesda Softworks

Publisher's description - “The Construction Set (CS for short) is a tool that can be used to view and edit the game's data files. The CS is an external program that is run separately from the game of Oblivion. The program is available for free from Bethesda. It can only be run on a PC.”

2% remove it

Oblivion mod manager 1.1.12 by Timeslip

timeslip.chorrol.com

About 1% of users remove it

The Elder Scrolls V: Skyrim by Bethesda Softworks

The Elder Scrolls V: Skyrim is an action role-playing open world video game developed by Bethesda Game Studios and published by Bethesda Softworks. It is the fifth installment in The Elder Scrolls action role-playing video game series, following The Elder Scrolls IV: Oblivion.

www.elderscrolls.com

6% remove it

The file wrye bash 304_3 - installer-1840-304-3.exe has been seen being distributed by the following 38 URLs.

http://fs-15.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540

http://fs15.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540

http://fs-6.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=101&fid=1000005129&ngn=3|19|2

http://fs-6.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540&ngn=13|18|19

http://fs-14.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540

http://fs-9.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=101&fid=1000005129

http://fs-8.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=101&fid=1000005129

http://fs-19.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=101&fid=1000005129&ngn=8|16|6

http://fs-6.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=101&fid=1000005129&ngn=11|14|8

http://iweb.dl.sourceforge.net/project/oblivionworks/Wrye Bash/.../Wrye Bash 304.3 - Installer.exe

https://downloads.sourceforge.net/project/oblivionworks/Wrye Bash/.../Wrye Bash 304.3 - Installer.exe

http://fs-11.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540&ngn=17|8|18

http://fs-10.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540

http://fs-9.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540

http://optimate.dl.sourceforge.net/project/oblivionworks/Wrye Bash/.../Wrye Bash 304.3 - Installer.exe

http://downloads.sourceforge.net/project/oblivionworks/Wrye Bash/.../Wrye Bash 304.3 - Installer.exe

http://fs8.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540

http://fs2.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540

http://fs-18.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540&ngn=15|5|19

http://fs-9.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540&ngn=3|18|8

http://fs-6.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540

http://fs-19.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540

http://fs-15.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540&ngn=8|11

http://fs-10.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540&ngn=15|8|11

http://fs8.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=101&fid=1000005129

http://fs-10.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540&ngn=6

http://fs-15.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540&ngn=10|6

http://fs-20.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540&ngn=15|10|6

http://fs-17.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540&ngn=4|13|10

http://fs5.nexusmods.com/FS/Libs/Common/.../Downloads?Download&nid=110&fid=1000081540

Latest 30 of 38 download URLs

Scan wrye bash 304_3 - installer-1840-304-3.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.