265423553_stp.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
MD5:
7e7b00f095c8b1b130786c5292afdbcb

SHA-1:
bd8c1601cbb00a9f124f06738c28be7a2cc98dce

SHA-256:
093fd13b2c32dd9ccb62ba978eb301f5071477fc20c971a67636cd0854574961

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/24/2024 10:46:31 PM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Trojan.PEF13C!6.8FB
23.00.65.14112

File size:
5.7 MB (6,015,389 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\265423553_stp.exe

File PE Metadata
Compilation timestamp:
8/21/2008 4:22:30 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:1LUWbEy+baO1+lUMVHlbrCgnwtgnWJEAKgrOMtjIMu8ILWD3Il7vptrTVjaEa4H:18aa+ldVHlHCgwPJEAn1IdLLWDQLvArg

Entry address:
0x28AA2

Entry point:
55, 8B, EC, 6A, FF, 68, 88, C8, 42, 00, 68, D0, 82, 42, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, 38, C1, 42, 00, 33, D2, 8A, D4, 89, 15, 80, 36, 48, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 7C, 36, 48, 00, C1, E1, 08, 03, CA, 89, 0D, 78, 36, 48, 00, C1, E8, 10, A3, 74, 36, 48, 00, 33, F6, 56, E8, E0, 00, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, 01, 15, 00, 00, FF, 15, 0C, C1, 42, 00, A3, 80, 3B, 48, 00, E8...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
168.5 KB (172,544 bytes)

The file 265423553_stp.exe has been seen being distributed by the following 50 URLs.

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_br&type=PROGRAM&Expires=1483352639&Signature=OA2z48DdpcECIRnj~JmSDVUqtruxM5AcHsva3yd22t7o~dOzqOWv5OG1bdf166F0aQPi7ey4Cp9x1OHPaNFhs-vcOVt1hmOMsYwL5JWFdN43DqYwFyL8pOX9OyEiDOknV~RWg~CHeg7VKv16IbtgYnhVyfFlZN-OB1faw3YHVX0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://dw.uptodown.com/dwn/4SOhI8QkfsPOuAlI-YQoi_b3ulqL3oGSpVX04hyiDp-Nms4RRUGs0UzmbhGbj6v3qL_QpOp4zQnb3KVFPwpzjn3sB1LxQINz4VOK4jaaAxwwRTPx9vVAPD0Wirlm7K0d/BsMn61OzBaOxQI2X3W-YbHWXZmO-3vyQp8yRiiYN-pUmDd5HtotfNqzMF3Gh9s6qTDYjyfxdrMK_4f1d451AxyFV-qdZew_1_a6DHXBFls5tcA0TkENsCpo4PDbVXlDc/6I8X-NrUCEBSBOplPjmOxhwqtXnmnbNDUFuxC3Dq0nxXM8QA-9Pq_87kfLF5PigpHHfSiihIdn1aiUaZC5Nlc78cOz-iASQwPI0nT4el4XBI3ogcEF4rvxJ2umnLB6Wx/.../

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_en&type=PROGRAM&Expires=1486613552&Signature=Ws~q0hhNo7pf467c7AYba6AIi6mtPFPRZCnuLh1Q4oQdL13YArkaCj8noo51wBLHIpQhpOsjDkzSNWzDexgHTPPUu~m7RGHI5lqrT-fz3jCenj9M5FZabr0cB~aZlgdryEm1JBSP6BtTYrGZh9mTsUjmE~PhB478xshg-1xU9p8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_br&type=PROGRAM&Expires=1485191477&Signature=A~QlPzrH9DdKUoJM8PlfNMPcDJ33WEHdYp89VK4VthgeqwdmZJOlMlAuW-OfNjx9RWffLfhdKJq6JMtFWhKwcJxSUKbAAgB5irUTVKYEB1jHpl-Us~5sM3aJA6GCrMdnGOIqOELCyVHgIoIfqzfVBAfa-vlTmjz3P69Xd1xcDTo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_en&type=PROGRAM&Expires=1481781263&Signature=JPHVFyABW3YsgUn5IYPknkwnTRycPdC6QZJ4CkkOIjrzNqQ~VaNApbHpG0lhuBc4eL9Ouh37vvyYmfF2HyE-8HMvL6kcFZu0dqY7UVvPfYsiPqF4rZ9AjPOZe23DQQWr8ivCVfO2ia75fbStDnJMZRdQOWI52ky1mpGzPwp0Ypk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://expstudio.com/.../expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_br&type=PROGRAM&Expires=1486729561&Signature=WUen8FGUSVFtwB1wDAm6ZrMvy974aWtM9ogjn6ov2SOjw4uNEkVRGplvfwn906POc0DltWOQ8X5RUhy3CuXQMKpolQS-h8MJM3vguCCr9koRpNYVuTj1HXeieYg9HC~XTFP3zHb3Fk4NgNZbqsWHAu669T3gOzkNHpaNn2E-Kk4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://s8972.chomikuj.pl/File.aspx?e=2z4xDquJB1-cHOIMkhsLXnfTUtLXGV7JZbUNPtKDp3NaEOGbg9eJ17YD5Ec0d3CMU-_d6iBVpENS5hpemFyO4R_WtJBniqYeZGm5XUF7fEIgGa9zo3h5BdWVUpZlXfzrVnqxfB26CYHcU0yhUKrfAU11WJ4lxuVCqL1YDjyQSVE&pv=2

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_es&type=PROGRAM&Expires=1476362616&Signature=dDa4WWxJBrNreUxtB3XnDliA4hyqs7t3961Rzf7FCTDLyjckcPB1EC8E~XFq7vzaUOaDGx9e5ATQrL7jD2YUsa3Xs8HOO9SFjYG0tsTghClNsxTv~X67G18I9dvhXjJGx8M200yEJf5Wj788QunQ27F0ESZDMAFimcW8XKUnv3g_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

https://dw.uptodown.com/dwn/8jPTjdSlYyyMsiZAkQbLENr4j2TaXyhiuSIiZlIsCxk_5fCfErI9_fn9VSkdaWvStUnSoDWzQ3knTwQ3MF6BWdpasHH0kuCKKUNYNbbVLqOxQJRcPPA2t9Ny7LxmUFxl/Xrphfo2J30t0DGmZxyerYjx5z3_TQiNHkZ6M6eMgBRpzpV5bSNDiNmpIU5_BFloYpan5gUXlmdx3vDQ04-x8MsQSHS2-JGiI93bnyrVtRJZo958Lat3qh6M8D4qkWxlF/DaSM5SERumoWk77jLZ6SRH-oQYcxPkgk0U5hDAQ-rE61NmLoGFARjQqkE16Z5m3l2eL7-W1uiyJe3Oz9Pwpu4EPhldgCHteCQXQPW0dj89unTrJbZSQJRhFFX12L7ZAu/.../

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_en&type=PROGRAM&Expires=1444775022&Signature=FRCncrzGyv-llZMgIxAhjAQfoRrF2SKIsHFluhbfVt9mQRhKZz83CTKvhsmA5E-Ak~YHlcaGra37VLE9YR0GuKeHwFyZX-DYYL0OLCwjLnBT5r1MfOLmp1lCRds2FLssBFHxUMp87-NGfIC6Ld0a9qByn8a6EZHETxld-dBcGBk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://dw.uptodown.com/dwn/ShfrzNGl3kZo-oMAmLKSNq5dCGc0v0xiHWJ3y-JsH0t9_d3uj4PDm7c8HfqtHEI6xXFAKihAyEB3gW3WUMMjAYetpLTZE1q-YBAZ4xNBGIDU7hY5IRkJ0wXWLkOWYvdN/2fM6wqVu3ojVv8793SfTIweSmENAtJE8NX_-L6nzmQjLAHOOFGLdr1FU6meH9K8TkuqzLmM0eJcu0iCJ_IKCgWhTJHCdD0xkLIbP6QE6sxjPeSqfUaOj3VtahSk0jvmG/-_FSAcQ-1PQAh4S-0xvIqGdvQ_9TJbX06J99jjxyPnC0P6g2qv-3eSdfF1S6lc4yYzlyEvjvQJ6G8Bd_ANGS6cwGtC0lvzdHWVtSU6D-tuJsO2kksdbMn1vKWd9SGwdW/.../

http://www.darmoweprogramy.org/download-file/.../

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_br&type=PROGRAM&Expires=1478166550&Signature=hgzk8uNTFvzw5M85SJoCovhxXQmNW-Cc9pmEACeRVYDPT3wGg3fuFJCCxN7scuPRX4rTIWvszr0qvBawN5EQzCMnyTqiYCIS~UOxj-gj0rfjWP5L3YPsxFLlHj751WaSSc66HyYwbBWWAbiZP7LzRzRdh5TnhXctljxeLzEhmkA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_en&type=PROGRAM&Expires=1477638450&Signature=Dl5bOzJZ32Ou5C2QIdBbymFc-ZWyvvHe9JWKq9S9YO2FYx29qbs37j7nsKzkMlPv-G-1EisNzgFYX4q6y170FojOmsuadrsseqC85gjzV-WbzdYV7SvPbNYUbbvzMie3eiB5Rv0~MLOU3HJ2KymDNTg2SR3IxjMhdXl7Jvg6UGc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

&onid=2170&oid=3001-2170_4-10444774&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=mp3audio/audio&topicbrcrm=&pid=10882974&mfgid=117009&merid=117009&ctype=dm&cval=NONE&devicetype=<!--esidesktop&pguid=4651d6147c70cafe4009d2cf&viewguid=g5M@bDTSKz7QrzYm2Fdtt5z5dgoN4WtTvrXa&destUrl=http://files.downloadnow.com/s/software/10/88/29/.../expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_br&type=PROGRAM&Expires=1458022778&Signature=QiGA2eFnfUwnhjcNDjuO2l64H7YZN267Hix~JGm26pnsrC~tbiN~FTwvN1lP9ZlAlkxftWGAIQuNJCeN2KWi6fQE6a1MhVwIBpGrP6W55DNy~wSTyxL5wzw2A~l1vM0CVdRXceNaGGs-tm7lrwQNWZlm8s4ZPJ6Qi0YUqeUekaE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_en&type=PROGRAM&Expires=1468015648&Signature=aXDeWPcOocdhYLbsD~vjmBACWYtnn755SOt~oJXiicPmplh~otQTNnC-Mkxpo0V2QdLknGFO1gTYOQYPjdeH1o-KT3nNAoivguQ1m4owjvyhhUbfhZXrFqNr3JQDLKDBrxuUTKkbFHPjf0V-PbPuP4ATD07f~fNdyMS1Gwhowps_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_en&type=PROGRAM&Expires=1480407953&Signature=EeUfoxKcFendCGgFyN9fCxOrmR-m3Idlmqd0mMqVVrzE7MyuFn4DP1EoMKVXqJfZoWPC5RCq2Z-MM3he15NTDQ91GYyDKxrh8TEnnfM4bxmdWBQAldG3LNslreHbaMxDIdL0bCPNUNoQPtLt~0AXxUYshVZG1tf4P0xQDw6H-4c_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_br&type=PROGRAM&Expires=1477399390&Signature=R0PIfEjQUdTvHgf15UZzuauaiErKk~e3jGbGp8NxXSnvkfh0vBNJOa0KgxmMHQMdVgngGxuehWUxHvsVL5ka3pvKLtebW~Gm-iq8DwUZfGzPFONYNLCLUftV83Nn9PYZCrNbIPXwpE~juB2G1vONJmSSJeWOPpUwVlHp5uwI38E_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_en&type=PROGRAM&Expires=1477869916&Signature=CbH625oVzuSLuEsYWS19DxRGU~wymEwQX8PLmoJss3U8zQ1wjo-vhYilA3~xl3p240OUB~dcRV1FVueqhOizbXhhFb18xmQjLC1F2oLGLe~5nza00aU2z6fEGEhuSLozXgStvGQ2s-F2y9o96Xa6tnJpbKpB6qB6~Qz~wNF3qLM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_es&type=PROGRAM&Expires=1481930626&Signature=WwTXgQnr-54qEUBxy0RfWWrlHDVpJ-LWaZB6CkTWuz2M-wPuDPEzml6iba05XBMfyfd00Ywv-hYUSXgcK~S~UeqKkNM4r5YAzX1gPMGCLpWaZjZ9HxeoJpiVWYoWTN9GVoSFUMscfpSqVCgw6WVJsyfUIhEX2q8n5iLZxZ4o7Xg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_en&type=PROGRAM&Expires=1463920422&Signature=FVgEP78D760kFdkqC4iaPaJflf8GKf5~Hslw~yfdYR9BW6qGzfQZ5LcT8e05ta~NBWPLuRsM1NouyCrcndKDg0tOVtdgszaCT4Mz0zwGHGpzJoVJoiS-17ws1GRztH5likmfPPCdLnXff4sg~k48Q~a06hXALsEDMHSK0M4mhnQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_br&type=PROGRAM&Expires=1482673946&Signature=c7laJ85r~2QHD2EjooMGw9q8chxny5300BbMaG3eTtm2gnXZcBUFo0PhEfubMwZnfQpgUYcKFTQdJcZlgA~A2i8eb6chvOoXIfy7qXtZlCwrgKMeVURLX8yuJb-3xLduhf9HSNLDJqNlysMG7~ZgVX4F4drg-saoTxkE090coOw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_en&type=PROGRAM&Expires=1463516321&Signature=PSx-8IaPPItygp~3JIkVmw8DKGPdTOLtSlbhEI3K0mwRTgDTMy~k6hnoxBhW0SEfx0t~AzctzSepr9-Y4WqDUKkdcdqp7XVgQ778JeTLDqRi1CjGwDLsw93TOAQjpsS0neYTzXOMeE1lFNENEXJro0FBIrie2Z0vXPf5SE17BFY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_br&type=PROGRAM&Expires=1482334944&Signature=QtS57SLxUOovJpZ~8Dg~hGxD2Sx8pxWHVMEj5KYqvqsapWZt-tRP5gvorL29lQJWHg5t9MEoRzaDfiEpRiCbmnuAkPn7z~reHf4ZIhji1iDOCLdjwGuu1Z6M1PvEcEEDPjloCBa7l09WcLv96VWRElA5fyMzFJc6A3mewv07ynM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_br&type=PROGRAM&Expires=1482152940&Signature=WwcedlykIgxhlXtGVwkJbfw~717DmIc45LIIw~kdblww2~ym5tpyvQHE9uLaBS3RgVgaBi~npD313dLfFwYHcUSI7ryDrcI87dO3~i3Tvem3XCggLlCAWVvpv6Nj7SbzfRK2OyXLTDZ7gScQ0N5NIbXivUYcpLr6G~03EqkwBWc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_en&type=PROGRAM&Expires=1477769000&Signature=VLNOqWTp-EmXtj6k4u23Lvyc1yP~N~eGVPOWgt8KaWwhQ7cB0hm92k5qCCibHL5RB~~Z0GRhZX7a7k-xst68aDqSb2rNeyPVRi9ITfW1RBptvFOcI8-eS8nSStu-ax1oCS5EeBcx1TRhZscj68x8xwN1nGaxIoWBrNXPkmK--SY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_br&type=PROGRAM&Expires=1462425040&Signature=dA89qPXmdcDNaR2F429L-pf2jgcNbgjmhHN-l8dWrjA4RrrXi99oMJDo9BoginaPGVoYiRjVWcDfNV42Z-c4T-9lqnDEpD6WNWzv8qtH-ef8O8bLxMkqv-DkCLfHyBrNvo5PNE29iZVBYOfS~XBvgqTZR~p-uO9a2-xc~MNAPGU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

http://gsf-cf.softonic.com/bd8/c16/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50151&instance=softonic_br&type=PROGRAM&Expires=1482973813&Signature=YHr5RdPWF-WWdC7dkQlUFeu4IvTObQwx997u~dAXXlSM-i3EjhnCSCKmDTo3XEpPtGfTLo4DLkRYrkg96HIAK6iQ~H1NEYIYW4WtcwCak0caq5tCsLN9d3NFCo2df0Cy3uRfkbC5NEyQXY9C3o~2PkuXSILI27E-6TNiLZVSJA4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=expaudioeditor.exe

Latest 30 of 131 download URLs

Scan 265423553_stp.exe - Powered by Reason Core Security