download.exe

7-Zip

Mozilla Corporation

This is a self-extracting archive and installer. The file has been seen being downloaded from i.download.idg.pl and multiple other hosts.
Publisher:
Igor Pavlov  (signed by Mozilla Corporation)

Product:
7-Zip

Description:
7z Setup SFX

Version:
4.42

MD5:
f2eb0e5d476468e3a1330ae0ae87f3aa

SHA-1:
1e9c3d4b90d6df4068eeaa33d50f3a1489520922

SHA-256:
8df127e328e3f9ed0dc6fba28dfd2b823e1efaa1f663434172077963917b00fb

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 8:05:03 AM UTC  (today)

File size:
43.6 MB (45,730,208 bytes)

Product version:
4.42

Copyright:
Copyright (c) 1999-2006 Igor Pavlov

Original file name:
7zS.sfx.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\download.exe

Digital Signature
Authority:
DigiCert Inc

Valid from:
7/9/2015 2:00:00 AM

Valid to:
7/13/2018 2:00:00 PM

Subject:
CN=Mozilla Corporation, O=Mozilla Corporation, L=Mountain View, S=California, C=US

Issuer:
CN=DigiCert SHA2 Assured ID Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
09E65AD807B8497B0749D41568D626D0

File PE Metadata
Compilation timestamp:
4/17/2014 7:29:40 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
786432:Las97V3GHXGrfq67uPEHhGlcPwAGFXpoFTRjl5a4Ddqu5wa7W+9mAh53LT/3KY+Q:OC3YdYuPwNPwbFXpoFRB0SdqSfJ97//T

Entry address:
0x21E30

Entry point:
60, BE, 00, 80, 41, 00, 8D, BE, 00, 90, FE, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75...
 
[+]

Packer / compiler:
UPX 2.90LZMA

Code size:
40 KB (40,960 bytes)

The file download.exe has been seen being distributed by the following 13 URLs.

http://i.download.idg.pl/fannef/b4ecdcc778c70045495e8592c389556b/57873907//vol2/w95/przegladarki/.../Firefox Setup 47.0.1.exe

http://i.download.idg.pl/fannef/df39b274b9d52f1b5b33a17f550e2be2/57b09e7a//vol2/w95/przegladarki/.../Firefox Setup 47.0.1.exe

http://www.bytesendclear.com/aCV28PHBhGvBPWAX8DzfZs64eBc4EjY3KvynblIZl2Or0hBC1vhXQqmzG O5EuJ0k9ExJX3JCRkXbItoNL5URDLSTwTREk72pd5w3KZBhCNv9zFgVAZc2XOkI6aYlciP86SuSc4YhtDRqL4eckgi09CuooDrYDAcZX 1JEbwVg_EclAd8C2zqMwrnJQfHel4QQ68YLfRXC0v_aorPYWbvpEDIZYRFRo39pxt2CyXP8XpPVU692EtetffkP3nEn76PlQWm13JUr1j56tr9OKE2FIIfAHbPgG6CXlD65Ozvmwafs zRjX QxVcLKr6wNCOs21UU22XR dr31VbvcJchs0Hh49bPyXyncm4R8l49hYXPhNycWYnrOhYUuaUVAFR_ZJSYh3TEHy0F3JFz5LOM4j27zXCTYWxC l0 Ald0dOUFxesFugy X1y cnb2 S7tePp6g2Xhw8ed52wH4FPJ9GAxYAZDJDqzNEVpU 1CWvvIS3v85 6v4s8nKEYxH2YJpKHE_oxaIkdmGX5DPuOnU9vflD9MCIAqG58sLKtZ HbjYATesH3sJPzThsPqj9B9PQj ineCivhoYQpTV4TeJ1A5rTYA==-G2MAAGTwHNKigWcF1O8Ahxw4tDQrULhj4JATuLQ9iPIayygg7hiuyx7y3A15afYPriN6D4D2XUkdMvtfmjEot0OtjytC4Mt5reDpZkZheQs=-E

http://i.download.idg.pl/fannef/c6ac5e378d11062b445e2501927be9ee/57a10036//vol2/w95/przegladarki/.../Firefox Setup 47.0.1.exe

http://www.bytesendclear.com/XeIqL4GJ1sqgjLt13WC4A38meygZAs13AdS6gi4k_FeQ_Lv8LQ4xTXr8qDhQca ze6I08iILm9Sw14o7rh1IvEneaSw2P6kg0ilW0gSAPH2LjG24tbKnyrat_sTxMqmvurPj2404u87nJ7psBmzp3W_aCOmAkWHAXW3VWJUf04CUaZt7QMBvXTb2egS6mD6I9rGmvpG531OH7rLF1qJbOymJTfa YKty_OkC7hWgCOKCS__Ag_wLfMwU1WEGBKjq466xBYu3yIvlMKjWfGOhCVmUVKSzt6_bHTVONrDv9LvZfpVWxpW_4o R xNqtBTv4WzN8nIws6_vDNwYNJPhm2cMFQNmDUHtXXymJgZIDdAdGkQK4DYglaMHsORCl9hwVc8AgCNOF KZjFVPrT2XhFoOMMiCd_iOcO1vFA4RJTD_ERjoCGDxUNKp2hYpn6Cw5PU5pGLLXEtelioig4smOciEZixrKAZ2sbxA0ENiZvA1RZxtOAUWmSkTIr811SKYtuZbLCYdS0LnpNklUQv7Fbg9kayMMfogwHZe3KH0bIEHcZkVAXpkJLRth1lMWNlJbwFapisH5OqdNBqjQ7I1jnlL7g7UjA==-G2MAAGTwHNKigWcF1O8Ahxw4tDQrULhj4JATuLQ9iPIayygg7hiuyx7y3A15afYPriN6D4D2XUkdMvtfmjEot0OtjytC4Mt5reDpZkZheQs=-E

http://i.download.idg.pl/fannef/e0ae950bac75a8e61013868c200acdc7/57c05ac9//vol2/w95/przegladarki/.../Firefox Setup 47.0.1.exe

http://i.download.idg.pl/fannef/bcef9fb0ed52c13f750fc78ceb189536/57b013b7//vol2/w95/przegladarki/.../Firefox Setup 47.0.1.exe

http://i.download.idg.pl/fannef/a95dbae1541a1f00ac92a41447fb58c3/57adf861//vol2/w95/przegladarki/.../Firefox Setup 47.0.1.exe