home

b1freearchiver_1.4.69.exe

B1 Free Archiver Installer

Catalina Group Limited

The application b1freearchiver_1.4.69.exe by Catalina Group Limited has been detected as a potentially unwanted program by 7 anti-malware scanners. This is a setup and installation application and has been known to bundle potentially unwanted software. This is the uninstaller utility registered in the Windows Control Panel for the program B1 Free Archiver by Catalina Group Ltd. This file is typically installed with the program B1 Free Archiver by Catalina Group Ltd. It is also typically executed from the user's temporary directory. The file has been seen being downloaded from b1.org and multiple other hosts.
Publisher:
Catalina Group Limited  (signed and verified)

Product:
B1 Free Archiver Installer

Version:
2, 4, 21, 0

MD5:
be494298f2aa475e8cfae050c94e44ef

SHA-1:
e45e63814bc02a85513d37f0e85ab7d8a0f6b4d6

SHA-256:
626ce9efa81ac59753d612b5a37c45f3faac0b382892f655c4ffae7dc7d54d47

Scanner detections:
7 / 68

Status:
Potentially unwanted

Analysis date:
4/19/2024 2:17:25 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Malware-gen
2014.9-150409

Emsisoft Anti-Malware
Backdoor.Bot.135374
8.15.04.09.02

ESET NOD32
Win32/4Shared.T potentially unwanted application
9.7.0.302.0

IKARUS anti.virus
Trojan.Win32.Badur
t3scan.1.6.1.0

Qihoo 360 Security
Malware.QVM10.Gen
1.0.0.1015

Reason Heuristics
PUP.Installer.CatalinaGroupLimited.T
14.9.22.1

Rising Antivirus
PE:PUF.4Shared!1.9C25
23.00.65.131215

File size:
527.5 KB (540,144 bytes)

Product version:
2, 4, 21, 0

Copyright:
Copyright (C) 2013

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\b1freearchiver_1.4.69.exe

Digital Signature
Signed by:
Catalina Group Limited

Authority:
GoDaddy.com, Inc.

Valid from:
8/16/2013 7:34:08 AM

Valid to:
9/26/2016 10:56:54 PM

Subject:
CN=Catalina Group Limited, O=Catalina Group Limited, L=Kwun Tong, S=Hong Kong, C=HK

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
4B8F32520620F6

File PE Metadata
Compilation timestamp:
11/22/2013 11:06:06 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:OFBiTY0+caOKVKF4xpX8fcPHlvaTEBnonF5nsH02q2:6BKYdI96pYcPYTEQzn2tb

Entry address:
0x271B0

Entry point:
E8, E8, C2, 00, 00, E9, 79, FE, FF, FF, CC, CC, CC, CC, CC, CC, 8B, 4C, 24, 04, F7, C1, 03, 00, 00, 00, 74, 24, 8A, 01, 83, C1, 01, 84, C0, 74, 4E, F7, C1, 03, 00, 00, 00, 75, EF, 05, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8B, 01, BA, FF, FE, FE, 7E, 03, D0, 83, F0, FF, 33, C2, 83, C1, 04, A9, 00, 01, 01, 81, 74, E8, 8B, 41, FC, 84, C0, 74, 32, 84, E4, 74, 24, A9, 00, 00, FF, 00, 74, 13, A9, 00, 00, 00, FF, 74, 02, EB, CD, 8D, 41, FF, 8B, 4C, 24, 04, 2B, C1, C3, 8D, 41, FE...
 
[+]

Code size:
255 KB (261,120 bytes)

Program Uninstaller
Program name:
B1 Free Archiver

Display publisher:
Catalina Group Ltd

Display version:
1.4.69.4546

Uninstall string:
"C:\Program Files\B1 Free Archiver\installer.exe" "C:\Program Files\B1 Free Archiver\uninstall.xml"


The file b1freearchiver_1.4.69.exe has been discovered within the following programs.

B1 Free Archiver  by Catalina Group Ltd
About 5% of users remove it
 
Powered by Should I Remove It?

The file b1freearchiver_1.4.69.exe has been seen being distributed by the following 3 URLs.

http://b1.org/download.jsp?buildId=52&os=Windows

http://fileforum.betanews.com/sendfile/1357819673/1/.../B1FreeArchiver_1.4.69.exe

http://b1.org/smart-download/0/.../B1FreeArchiver_1.4.69.exe

Remove b1freearchiver_1.4.69.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.