4955762_stp.exe

iWisoft Free Video Downloader

www.iwisoft.com

This is a setup and installation application. The file has been seen being downloaded from www.tucows.com and multiple other hosts.
Publisher:
www.iwisoft.com

Product:
iWisoft Free Video Downloader

Description:
iWisoft Free Video Downloader Setup

Version:
2.1

MD5:
ab9b4fc89127f829993a9e4ba43522e3

SHA-1:
1d4c03d26cdefbdfbe1073193b16604b2c622a16

SHA-256:
023c151b9144f9bf50c848cfcd6a1132c275c264ab2688fa30859c6bea0de964

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 6:23:31 PM UTC  (today)

File size:
3 MB (3,127,375 bytes)

Product version:
2.1

Copyright:
http://www.iwisoft.com

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\4955762_stp.exe

File PE Metadata
Compilation timestamp:
1/6/2010 7:56:24 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:BhQRfjBm8lPjrUe5F4nJ0ShSvkk9J5UaSYDKryPAy+O9TAberVvbEUEwggyUCfXK:BOtT4nzMvkkb53TqvM90boTll8SBYKxZ

Entry address:
0x163C4

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, E8, 54, 41, 00, E8, 70, 04, FF, FF, 33, C0, 55, 68, 91, 6A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 4D, 6A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, AB, 41, 00, E8, 3A, EF, FF, FF, E8, 45, EA, FF, FF, 8D, 55, EC, 33, C0, E8, FB, 87, FF, FF, 8B, 55, EC, B8, A8, D6, 41, 00, E8, A6, EA, FE, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, A8, D6, 41, 00, B2, 01...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
85 KB (87,040 bytes)

The file 4955762_stp.exe has been seen being distributed by the following 24 URLs.

http://www.tucows.com/download/windows/.../flashvideodownloader.exe

http://global-shared-files-lw.softonic.com/1d4/c03/.../flashvideodownloader.exe

http://gsf-cf.softonic.com/1d4/c03/.../file?SD_used=0&channel=WEB&fdh=no&id_file=91710&instance=softonic_es&type=PROGRAM&Expires=1476188901&Signature=a3jQjVjq3KqT9UQhSNdgus~oX5Zhv0LFthwNDmZF4bRyupXQOzRz8XKeeavHiNGsUcP~TkgzCExkXnpj8x7FHOThY~YMijGL4n-wf3gsoW8FDCj~sNOgSdNlVuUcd7z14-22KNzl6JWDEW-x76F9wid9SxgE1nWLchIYPfqKDL4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flashvideodownloader.exe

http://gsf-cf.softonic.com/1d4/c03/.../file?SD_used=0&channel=WEB&fdh=no&id_file=91710&instance=softonic_it&type=PROGRAM&Expires=1467064549&Signature=EkqKNsGTDDEu4PLkLzJzw4njmZHmo4RczIRnAeA3aH~WWbcua9nORCC6YDjACiHVRc6NiBh6cLrw44Ygyp~9UDlI08sWEKO6p9tc7uPWmh8NxH7rR~u19wPdK2eFFeWOa8mF8jY9rjIqdjDpofo~PaYyR9W~tyTgktC2VHswYJE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flashvideodownloader.exe

http://letoltes.szoftverbazis.hu/9KNmjr5AkoelLKYNOXdgAQ/1483011148/.../flashvideodownloader.exe

http://gsf-cf.softonic.com/1d4/c03/.../file?SD_used=0&channel=WEB&fdh=no&id_file=91710&instance=softonic_it&type=PROGRAM&Expires=1473129732&Signature=gPz1wL6cpwIilCk8JtpFSf58qfq6GAKCzuUFaKay4GnVXegM3VtmIs3rShkJt7OBA0AUlBUjDm4xPxHGPuPUz9y5y-5duuxTJ5fvEVKxXmPkpkGRahDf63wpSxwDKcrZzm21f1a1M9i8o-Fskda1fiv~0tlFK-Zd7TI1T~0jtuM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flashvideodownloader.exe

http://gsf-cf.softonic.com/1d4/c03/.../file?SD_used=0&channel=WEB&fdh=no&id_file=91710&instance=softonic_fr&type=PROGRAM&Expires=1475816217&Signature=dHn5CunbVxYrYU13Nl2fSwuWelOzvzL1XF34DsAUhn8~1qkbMds3pPaqMcvjM8d6Cxk298weL0vWQBhy65QLKw~oMqjBTg1EsCvWiZOo56wke8uPYf8WgqSti~amP6AQH3GODDfSQXgKJRi5BkNXLnJA5Wfpm2OtX1NGEfZWluE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flashvideodownloader.exe

http://letoltes.szoftverbazis.hu/IIiST3eC6Kw4gkyLNjm3zA/1477657194/.../flashvideodownloader.exe

http://gsf-cf.softonic.com/1d4/c03/.../file?SD_used=0&channel=WEB&fdh=no&id_file=91710&instance=softonic_en&type=PROGRAM&Expires=1478655490&Signature=ah3jFR2-JaOjQecrtgFsfC~mYvvJdiFfgp2PQdOEhHdv-z9-dV~7OZMvytp51zABV-penRKb41bY6RtjMJFuYn4Lh4t9ZcszszM9A1dARZH1Z6RLsHzc9WOmgGpkl6qYjsT3tsMW2J7ZESSjcBaPdgNhBcbfxm1-MH3Kkqb7CWQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flashvideodownloader.exe

http://gsf-cf.softonic.com/1d4/c03/.../file?SD_used=0&channel=WEB&fdh=no&id_file=91710&instance=softonic_en&type=PROGRAM&Expires=1461971582&Signature=em2lzluNT6HlqZju3TY~3tSdfcUjo6rbg~EA-r2i2nbxO5uaokEvrUVxxv8zb3EWIY1sSzgDm53OYL0lOUf97H3bJ-T19IQbojcWtIkPCmxdVuke5e908Xvi6mzLfTDwj~T5bwTew7lu1csIvTZWpllaPqHGNj10smf9afFe2Ts_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flashvideodownloader.exe

http://letoltes.szoftverbazis.hu/p3z7el5S588CZ3PWJPaLhA/1479148373/.../flashvideodownloader.exe

http://gsf-cf.softonic.com/1d4/c03/.../file?SD_used=0&channel=WEB&fdh=no&id_file=91710&instance=softonic_en&type=PROGRAM&Expires=1465753363&Signature=ic1hPjB4fQDvMZ-JuJUnqSQZ4GH6wHHdMQBHHZBuXfM0AMGOOqNOvU3wQnr9omjhICzVpyF3beUudbkF53cBsJAhh54rcrhUBOh-rNLmWor1SXCywfy6LDEXgKQQWskq4zikL3Vv-jgneUGi4TlGAs036FZhAyOeDbX2r0U5hss_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flashvideodownloader.exe

http://gsf-cf.softonic.com/1d4/c03/.../file?SD_used=0&channel=WEB&fdh=no&id_file=91710&instance=softonic_de&type=PROGRAM&Expires=1470862192&Signature=FhXajOV5IxoFpyYLcoLexRPKxxtlU9ba7XiT5ngnhNOLLibk~No3Odm6Hty1zAWPWQSwpNh-P0tuCYyguQvqenqHJh6lYaUMo7CohuBcn6A9Fyiexa3Dda~BzLbyTnBs~-d9yzns2VA0YDipQJ9VzYjbObmyadufFijzkWExHCw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flashvideodownloader.exe

http://iwisoft-free-video-downloader.software.informer.com/.../

http://gsf-cf.softonic.com/1d4/c03/.../file?SD_used=0&channel=WEB&fdh=no&id_file=91710&instance=softonic_it&type=PROGRAM&Expires=1469579365&Signature=CjVQ2uwN~~cINfULcNjtuJ6HGMWj01GiycGkeWvnA5x-~UToEPZKsKsg3TI-XWJZGyd~En~TSz0Nb-WRFAJKcX-LMLnjcK3chNxV8t2djnusgGrjbkpnf6ZriA5I7wk-075oryjNV6q75idweEkNGgt3FR3h5dFTOc9XsiF1ASc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flashvideodownloader.exe

Scan 4955762_stp.exe - Powered by Reason Core Security