The ByClickDownloader Setup exe (By Click Downloader Installer) ByClick File Malware Analysis
Gridinsoft Logo
File Icon

The ByClickDownloader-Setup.exe (By Click Downloader Installer) File Analysis

Updated 1 year ago
Checked by Malware Check
ByClickDownloader-Setup.exe

Technical Analysis

File Name ByClickDownloader-Setup.exe
File Type
PE32 executable (GUI) Intel 80386, for MS Windows
Scanner Version 1.0.184.174
Database Version 2024-08-11 16:00:28 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
45,932,480
File Size (bytes)
2024-08-11
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
9e0060e49f750608b202fc6568a5131f
SHA1
cb9876ff3498a3aa7a137b9012424311bfe081af
SHA256
867453dbed090ca801c6a660f5c95a0573b7b7715ba89685a73ab5f2f1e92c99
SHA512
475feeeae2ff4dd08dca8df211f468909bce754dd47103f6e0274a028f0e6c3dbfd667ad5894d1159bae425c5a5ea15c5e050670b79fe7f6d6c53bbb01255ae3
ImpHash
36aca8edddb161c588fcf5afdc1ad9fa

PE Analysis

Basic Information

Icon
Hash: 8d177369f74f126f0682a7310264a2b4
Fuzzy: 72bbf90fb0f86fdd10edaab5e6582401
dHash: 6ded69c7b130b2c0
Image Base 0x00400000
Entry Point 0x0060d930
Compilation Time 2024-04-04 13:30:55
Checksum 0x02bdc822 (Actual: 0x02bdc822)
OS Version 6.0
PEiD Signatures PE32 executable (GUI) Intel 80386, for MS Windows
PDB Path C:\ReleaseAI\win\Release\stubs\x86\ExternalUi.pdb
Digital Signature OK
Imports 2 libraries
KERNEL32, imagehlp
Exports 0 functions
Resources 44 Resources
Sections 6 Sections

Version Information

CompanyName ByClick
FileDescription By Click Downloader Installer
FileVersion 2.4.11
InternalName ByClickDownloader-Setup
LegalCopyright Copyright (C) 2024 ByClick
OriginalFileName ByClickDownloader-Setup.exe
ProductName By Click Downloader
ProductVersion 2.4.11
Translation 0x0409 0x04b0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 2,722,682 bytes 2,722,816 bytes 6.46 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ A7E75DD49895E0EFBC9B0AD67AA29301
.rdata 0x0029a000 736,034 bytes 736,256 bytes 5.07 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 7ED43448D00970C8F9A35AD94E37E8D1
.data 0x0034e000 52,096 bytes 13,312 bytes 4.49 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 42F9ADDFFB14A265DC84699655B6FC04
.didat 0x0035b000 1,804 bytes 2,048 bytes 4.54 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 41E1073DB2E8EC226337EE0001C72984
.rsrc 0x0035c000 195,308 bytes 195,584 bytes 5.13 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 6878B6D233E5CEEED3DB3D74594E7B45
.reloc 0x0038c000 186,724 bytes 186,880 bytes 6.57 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 38CC69FE0DEF88CFD889FBA7F74D1CF4
Entropy Analysis Alert

1 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 44 (192,945 bytes)
Resource Type Count Total Size Percentage
RT_BITMAP 6 26,098 bytes
13.5%
RT_ICON 5 34,408 bytes
17.8%
RT_DIALOG 5 1,198 bytes
0.6%
RT_STRING 15 11,574 bytes
6%
RT_GROUP_ICON 1 76 bytes
0%
RT_VERSION 1 808 bytes
0.4%
RT_HTML 10 116,716 bytes
60.5%
RT_MANIFEST 1 2,067 bytes
1.1%

Certificate Chain Analysis

Certificate Information
Product By Click Downloader
Description By Click Downloader Installer
File Version 2.4.11
Original Name ByClickDownloader-Setup.exe
Signing Date 08:55 PM 08/02/2024 (390 days ago)
Verification Status Signed
Signers By Click; Sectigo RSA Code Signing CA; Sectigo
Counter Signers DigiCert Timestamp 2023; DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA; DigiCert Trusted Root G4; DigiCert
Internal Name ByClickDownloader-Setup
Copyright Copyright (C) 2024 ByClick
Certificate Chain Summary
Sectigo RSA Code Signing CA #1 Primary
Validity Period: 2018-11-02 00:00:00 → 2030-12-31 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 1D A2 48 30 6F 9B 26 18 D0 82 E0 96 7D 33 D3 6A
DigiCert Timestamp 2023 #2 Chain
Validity Period: 2023-07-14 00:00:00 → 2034-10-13 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 05 44 AF F3 94 9D 08 39 A6 BF DB 3F 5F E5 61 16
DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA #3 Chain
Validity Period: 2022-03-23 00:00:00 → 2037-03-22 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 07 36 37 B7 24 54 7C D8 47 AC FD 28 66 2A 5E 5B
DigiCert Trusted Root G4 #4 Chain
Validity Period: 2022-08-01 00:00:00 → 2031-11-09 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 0E 9B 18 8E F9 D0 2D E7 EF DB 50 E2 08 40 18 5A

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

OK

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware