» 1168371_setup.exe
Overview
Analysis
File Details
Programs (1)
Downloads (28)

1168371_setup.exe

Skype

Skype Technologies SA

This is a self-extracting archive and installer. This is installed with Skype™ 6.0. The file has been seen being downloaded from s7228.chomikuj.pl and multiple other hosts.

File name:

1168371_setup.exe

Publisher:

Skype Technologies S.A. (signed by Skype Technologies SA)

Product:

Skype

Description:

Skype

Version:

6.0.0.126

MD5:

056570aad77fbe52dfa8b33ce1adfa19

SHA-1:

109d3633b7976723c8df3c6f86f87b42f0e8743f

SHA-256:

d896ef00efa79c8424cb07f315f71b4facb9ac3ddb98bcdbb364a16e1bfa460e

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

12/26/2024 2:38:20 PM UTC (today)

File size:

27.9 MB (29,304,496 bytes)

Product version:

6.0

Original file name:

SkypeSetup.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\1168371_setup.exe

Digital Signature

Signed by:

Skype Technologies SA

Authority:

VeriSign, Inc.

Valid from:

7/18/2011 2:00:00 AM

Valid to:

8/18/2013 1:59:59 AM

Subject:

CN=Skype Technologies SA, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU=Information Security, O=Skype Technologies SA, L=Luxembourg, S=Luxembourg, C=LU

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

200A7D1C4C0EF383111D1C1CE02C9608

File PE Metadata

Compilation timestamp:

11/9/2012 12:31:28 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

786432:LzPy/1RtT/iPvX7nn57zp+AHYAcz7Rx2qjZ7U3lmR:LzPyNLT63Xztzp+A4AqdNjZ78lo

Entry address:

0x1F480C0

Entry point:

60, BE, 00, 10, 7A, 00, 8D, BE, 00, 00, C6, FF, 57, 89, E5, 8D, 9C, 24, 80, C1, FF, FF, 31, C0, 50, 39, DC, 75, FB, 46, 46, 53, 68, 4F, 66, F4, 01, 57, 83, C3, 04, 53, 68, B5, 70, BA, 01, 56, 83, C3, 04, 53, 50, C7, 03, 03, 00, 02, 00, 90, 90, 90, 90, 90, 55, 57, 56, 53, 83, EC, 7C, 8B, 94, 24, 90, 00, 00, 00, C7, 44, 24, 74, 00, 00, 00, 00, C6, 44, 24, 73, 00, 8B, AC, 24, 9C, 00, 00, 00, 8D, 42, 04, 89, 44, 24, 78, B8, 01, 00, 00, 00, 0F, B6, 4A, 02, 89, C3, D3, E3, 89, D9, 49, 89, 4C, 24, 6C, 0F, B6, 4A... 
[+]

Code size:

27.7 MB (28,999,680 bytes)

The file 1168371_setup.exe has been discovered within the following program.

Skype™ 6.0 by Skype Technologies S.A.

Skype is a proprietary Voice over IP service and software application. The service allows users to communicate with peers by voice using a microphone, video by using a webcam, and instant messaging over the Internet.

www.skype.com

6% remove it

The file 1168371_setup.exe has been seen being distributed by the following 28 URLs.

http://s7228.chomikuj.pl/File.aspx?e=Q9PjC5jtQLVkNOOpV25ia4TaoRbwR7izL3hi-9y6uNt6rcRN5NTiWRNgAiuPZ3AKV-XKGk9asv_A29g_w5Q8u3HvhUij4pkl7H_iwLqb2cbGTxwvGW1XFNsfKZO95eAB9jsE5_ZQcMvf4OYdr1DoRQ&pv=2

http://www.filepuma.com/file/1464292378c1824/skype_6.0.0.126/.../0/

http://www.filepuma.com/file/1479540355c1824/skype_6.0.0.126/.../0/

http://dla.uloz.to/Ps;Hs;fid=32600924;cid=1887203637;rid=2066450143;up=0;uip=178.143.7.112;tm=1468064275;ut=f;aff=uloz.to;did=uloz-to;He;ch=11b8702dd90ba5413f71a9314a989334;Pe/.../skype-sk-exe?bD&c=1887203637&De

http://www.filepuma.com/file/1448491841c1824/skype_6.0.0.126/.../0/

https://doc-0g-08-docs.googleusercontent.com/docs/securesc/t2e2dtir4s7i2975u70fe34ftpsok5cc/t82r32im9p205hj5f2dtia5knd9bugnf/1463133600000/.../09394173512746781274/0B2DhQpm0lfvOWV9tZDlaX3BMRnM?e=download

http://www.storage.programosy.pl/SkypeSetupFull_[www.programosy.pl].exe

http://www.filepuma.com/file/1443328657c1824/skype_6.0.0.126/.../0/

http://www.dataworld.pro/static/files/soft/windows/.../SkypeSetupFull.exe

http://dl.cdn.chip.de/downloads/.../Skype126SetupFull.exe

http://www.filepuma.com/down/1408578898c1824/skype_6.0.0.126/.../0/

http://www.filepuma.com/file/1408578898c1824/skype_6.0.0.126/.../0/

http://www.filepuma.com/down/1408574969c1824/skype_6.0.0.126/.../0/

http://www.filepuma.com/file/1408574969c1824/skype_6.0.0.126/.../0/

http://www.filepuma.com/down/1408574214c1824/skype_6.0.0.126/.../0/

http://www.filepuma.com/file/1408574214c1824/skype_6.0.0.126/.../0/

http://www.filepuma.com/down/1408574104c1824/skype_6.0.0.126/.../0/

http://www.filepuma.com/file/1408574104c1824/skype_6.0.0.126/.../0/

http://www.filepuma.com/down/1408573612c1824/skype_6.0.0.126/.../0/

http://www.filepuma.com/file/1408573612c1824/skype_6.0.0.126/.../0/

http://www.filepuma.com/down/1397822626c1824/skype_6.0.0.126/.../0/

http://www.filepuma.com/file/1397822626c1824/skype_6.0.0.126/.../0/

http://down.filepuma.com/files/web-phones-and-volp-software/.../Skype_v6.0.0.126.exe

http://www.filepuma.com/down/1402873726c1824/skype_6.0.0.126/.../0/

http://www.filepuma.com/file/1402873726c1824/skype_6.0.0.126/.../0/

http://ftp-stahuj.centrum.cz/dl/e1b7b554d8c3832bac16eec204fb81b6/50d8a6dc/stahuj/download/software/secured/s/skype/.../SkypeSetupFull.exe

http://download.skype.com/SkypeSetup.exe

http://download.skype.com/.../SkypeSetupFull.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.