» firefox setup stub 47.0.exe
Overview
Analysis
File Details
Downloads (73)

firefox setup stub 47.0.exe

7-Zip

Mozilla Corporation

This is a self-extracting archive and installer. The file has been seen being downloaded from www.paleoceanography.website and multiple other hosts.

File name:

firefox setup stub 47.0.exe

Publisher:

Igor Pavlov (signed by Mozilla Corporation)

Product:

7-Zip

Description:

7z Setup SFX

Version:

4.42

MD5:

f401ed7ad51cf85ef6ea20eca6caef46

SHA-1:

0cf9c0f8087768490ef8882f81e10a4ef7ab85fe

SHA-256:

05367a327fec1f24f2a7d4f0dfb49e2a2184205e9e46743be0097cf99eff4d98

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/2/2024 11:32:13 AM UTC (today)

File size:

236.5 KB (242,136 bytes)

Product version:

4.42

Original file name:

7zS.sfx.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\firefox setup stub 47.0.exe

Digital Signature

Signed by:

Mozilla Corporation

Authority:

DigiCert Inc

Valid from:

7/9/2015 3:00:00 AM

Valid to:

7/13/2018 3:00:00 PM

Subject:

CN=Mozilla Corporation, O=Mozilla Corporation, L=Mountain View, S=California, C=US

Issuer:

CN=DigiCert SHA2 Assured ID Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:

09E65AD807B8497B0749D41568D626D0

File PE Metadata

Compilation timestamp:

4/17/2014 8:29:40 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

6144:gvc6rBaDbBU0Bbv46i8ocr6cEpJlFaA+n/WlcwAAt1pfx7xM:g6DbBU0e38ocGtBF3+n2nBt1/xM

Entry address:

0x21E30

Entry point:

60, BE, 00, 80, 41, 00, 8D, BE, 00, 90, FE, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75... 
[+]

Entropy:

7.8839

Packer / compiler:

UPX 2.90LZMA

Code size:

40 KB (40,960 bytes)

The file firefox setup stub 47.0.exe has been seen being distributed by the following 50 URLs.

http://www.paleoceanography.website/?0mfw3kVsyKWQlbRh1aeEZXeQZLBRZeGz8XRHgGVVFRQw1rKwlgYAgIXHcZPwUcORs1FlwLW2BDGmB0AhEZXwQ3Fxw5FhkWSlsfIgNceHFIVDEWWRADCyRdHRITXBw4HxYqVAgUWVAEO1ZLDRVeIARGCDUWCjgWBAhKWx8iA1x4cUhUMRZZEAMLJF0dEhNcHDgfFipUCBRZUAQ7VksNFV4gFFIFNRYVbUQZFUYOWmFBQX4GW1FEBU03Awp2WBkSBxZYF1ZLDRVfIBFSGCIeHC9ZDAIYRAU6HBgvQ0MFGF5OZDUdJEcDChhSD3NBPxtCAgsHR0YSHA4lXAIHE1YZe0JOeQhYUEEEWGBdHDNVSwgWXlYOA1IbVQNNM0ECIBYLYGgdTU8DXWYQUg9fGggbXAoyFgttUwAKShUKJhoUdlgZEgcWWBdWSw0VXyAHQQQ7Aw0vXxoIG1wKMhYLZVMCC1IBLTocHiQeHQgQ

http://filez.tech/.../download.php?aff=10451&name=Hearts of Iron 3 Full PC Free Download

http://www.spiriestwd.co/.../KBkWACoRXTcoJWNHPwUhFR04KCkiUEsnHhAcOTc8azEWFiAOHDUjLTRYSFV9UEJld3FxQ1cENgdVOiYlezEWFiAOHDUjYxAcChQvDlgHMz0iHBZKfFJDbGwNPgULBD0RWBIyJCpeLwQ8ERo7KWNtXj0OOQwfOyYsIwdfAiMOTnImOC8YRAk6FgNxdAljRz9EfCQDJiglNgEdDjkMHzsmLCMHVwIhD1ZmASQpEhZPPgwU

http://www.childgodecpa.loan/?KOChR53kXTIit WXwEHV52Zn1pIAk/RVoPZWd9d3ROIlMOKCo7ODwlASBQewo7P3l/cl55Z1IZcxAkOC0EPVRXDipyPz9 ACZBQ05rFW59BU1gc0MZNzk7OycHJVtfBDkwLj1tCz1YFlkecXgJMB0xVlYYK3IiIX4AJkFDTmsVbn0FTWBzQxk3OTs7JwclW18EOTAuPW0LPVgWWR5xeAkgCTxWVgd ID88clVjAQJSa2V/.../ZlsTEAEtfWYNPzEHP0VHDzcjJSMsCTZQQUU7OyZqcS4 WlQEdiQlKA==

http://filestore.tech/.../download.php?aff=6558&name=Crack for windows 7&product=gotclip&file=Crack for windows 7

http://gsf-cf.softonic.com/f6d/f6f/.../3DP_Chip_v1508.exe

http://w7.mien-phi.com/Data/Soft/2016/06/.../FirefoxSetupStub47.0.exe

http://www.distendspretermitted.trade/?mQd3UuvfzlBDVZAntEWFNUXlt3B1I4BR8CR19baVMVJRNLNRcNHyUgQTQCXVRKXVl6IFwiGxoJGwgII0JHJUgeEg4cSGIlFmczU1Q8HB8 CUMhERkRFAACMABWJ1sVCRdJXxdBABMGAwUZCR4iQlo7SB4SDhxIYiUWZzNTVDwcHz4JQyERGREUAAIwAFYnWxUJF0lfF0EAExYXCBkJAXcQRyZES1dCXFtkXAJnRkFAGxwebAxHIQVTVTtJXxdBARMTFxUOAQg1DVIxGgEIFgMMNRcdNhobQ0gqCT4TXTkaFwJfXisBFlw4BQJLPgMaPwhcNBETFFddVWFSBm1ERFVNQggpARU7FBtbKQEMIxB3JxQBTUhcXGVPdzoCGAoVDQk0FhU2GBpbXA0dOAkOPQECFl9fLHRWdXBHMBYIAwAhEFc6AhgKFQ0JNBYdNhobQ0gqAT4DXHsFGAE=

http://www.distendspretermitted.trade/?az6Z0tVrI9CB4Lax5FeEdnC1dcVTtdBD8WdApXQgF8QBJrNSxXBAhXNhsnIwAuUAIbWnF/.../QhUiGyZXElEdblVfEh0 Vw0VVz5VBnARJFVcXFcqWRlrGj1NEV8FGxVGEFd7fxEIWTdAADIdPlcNFVc VQZ4ESZUREhwNl8TOVw5VwY=

http://filestore.tech/direct/.../mediaplayer_setup.php?a=18958&s=0&t=1&tp=32&fv=9

http://www.makefasts.website/.../IUFECD5ACXY7LzxdRGpRXSlbIm00QgYIDgc5R2t4FBdHc0NBC1oiLTFeGRsFHCASfA0xXQJbChwsUz1uZ3QtBiIyOFMnJGRtQhsCHyERICo4DxFZClUuWiJ2JhQURQ8ecF86PyUXRnRDQQsSfA04XhNRCh9jVCEmcAAzUQkEI1shKjFBUAcgFyFbYDs7VQ==

http://www.spiriestwd.co/?Sxq90dai34OhxMCB5VT1wdBmVeElhdFAgNDgdlQEYfQAJcOlhNIx1aaVEXEh5cRjdTMktRBwoMQR8XFwZXXAsADVZGdQwBBFgQFRkWBxJdQ38VVicZQVs CAVdXxMPBVxVNx0DF1MLDEwBcnZLN0pFBwIMQEd1ER8EWBAVGRYHEl1DfxVWJxlBWz4IBV1fEw8FXFU3HQMXUwsMTAFydks3WlEKAgxfEicMAggNVVlfBQBnQEMJBkIAGUAJOwwFSRVXIEwBcnZKN19RFxUEVlA6GRVWRwoNBlJQIFYSVl1BUy9XWyQWHVZRAERbdWQhFxxJREklBkRaPxcQXVUWTFgLAmVMRQECVFdHVkw2Xh9YXVkyAkpENlMhWEMXFgZBUHg7A1hTDwQbGHA8Dx9VXwUFDEESMBUdBBYFEQBeCTsMBUkVVyBMAXJ2SjdJQgsMGUdQPA8fVV8FBQxBGjAXHBwCIg0GVFt9CB9e

http://www.neuroglial.faith/?fUPBRbS9AxDzFtc3xTfQxvSlBzMyM/EjpdfEtQbWdkIgRufS4MB34RK3ksNk5qNQclewY9FT1VLhkCMCJkJhJuUTUMFnBjA3dQFRxzPhYnPy8iFjdWNhYKOjEmNxB9Wi4VQ2cWZ2EkIEwiGwMmI2Q7DG5RNQwWcGMDd1AVHHM Fic/.../NTwOPFglXVQTADA9DyNNbDwJIj4uPQM3XDNVV2VgdGdRZQ1ySkgwKCd0DDJUfDwJITFpEwt4dyQPTRgxMnkmPE4vFAk0NCcgRDBULUVANCArP187TTUIQ2YRZ2AkdgsHCBQ6PTImBjxOLxQJNDQnIEwwVixdVBM8LTUNfUkvHw==

http://www.dermatophyticed.lgbt/.../RgJGR39cfU8GMxMQGhEjWAgFFSoYVREUZSEsEgosGB0nCT0RLAxIHUQGRUVlVXhKO31CHS4ZPk4NDhQlGlkVFCsXbwIOJ0sQFQAnCHQJFz8GE0cxa1cPRFENBkQbHT4RLQ4UJRpZFRQrF2cCDCZTBDIcIQImTxMlEQ==

http://www.childgodecpa.loan/?KtW4eqJphiIhBqBUtAZEVGW31SNFUIASMUVVp9TGASFRd3MQQFYDU1WxAFYTEPACcRfB8kFiMcDUIGFTlVAhQnWywGPBo7WwQVLwJOHTtJP0ARAW9DKUx5MnIGIwE4HwUZPxA4QwsdJREMDDlaNFsIVHg2TVoNByJXBhQ5A04AJUk/.../EDhDCx0lEQwMOVo0WwhUeDZNWg0XNloGFCZWHB04RWoFV0VyRVtcfEFvEgQBOU0AHT8EcgckVHg2TVsNEjZHERwvFAEILxsgWgkeKxQbRygbOhFXNy4fHwcnGzZQQEMMIBoGJgQjGSEePR4EBioQMkZIQHhEUFx4QWABXV8vCA1PJRU6CSQdJlspCyQBIx8kFiMcDUJgNTBdCRRhPQkHKhMyWQAfPlslCC8RfHEEAjNbLAY8GjtbBBUvAk4KJhhqEgQBIx1VAT8AJxFWMG9CLkx5MidGChw6BAwGPBo7WwQVLwJGCiQZcgYjHSUXB0c7GjA=

http://www.plaintively.website/.../MwQsN1gcUUBrbWNXZzdXRQhCPCFpOnJzHxwAHX4tJBZwelVLCAlhBmNRbyNdFEoQKCptDTUzQV1fMH1rFkBzAVwUChU0NX4GLioUSioVNy4 CS4mVQtJQx49YwE5fm5LWF88NTxDLyZcRQgdNH8zCC16Ql4NATE0bQ01M0FdXzB9axZAcwFcFAoVNDV Bi4qFEoqFTcuPgkuJlULSUMePTwJbzdfHw==

http://www.nonefficaciousowd.college/?bMpQlu18zPCylNYEJEHw1UYlRrEzABBVhcR2NUdUd3HBMMfhsiDyQeNkcmWFUPPAM5HyNHRAYTKhNJCR8mAhleWR41EGsEIVEdRUwKdVEMVWMqUAN CiINIAAlCBpGVhY/AykVI0IWXlVfYiRoQxcfAFJbHyMRaxk/.../DRgMfhsiDyQeNkcmWFUPPAM5HyNHRAYTKhNJCR8mAhleWR41EGsTPABIF1kKOQ9wGCUYBRQLO3VQC1VjKgVDVxcgFikfJgIZXlkeNRBjEz4BUAN Fj8FIl4hAhI=

http://www.degraders.press/.../QRFrKDMDJ34lLF0bfT0kFDU8DDcXGTcGfAAvOQY=

http://www.childgodecpa.loan/?wpvjRoz5J4HhRLW3xeVABkBkFWFQs/.../UwJXQj8iID4OLU0lUSM6GQkKGFxUOkdKGAIeIkpJdG8GMVVELCUYDRspWBgFEgs2BxVGPhoUHxtPYCkWWi1bWQAYDXQBG1h3chgfAggzAxZ4K1oWFxMYYF9LBhp3URMbBm8cXFQ6XRpNHh4mH18GCxFFNlNYFBgNQmRXGx8DDjMLElo5QFkTGQd3XTxZJVMYXgYENQ==

http://www.neuroglial.faith/.../LC53EQRZByQtEQYFVjFmQh0eLiEBLXsBfWIRVVcTbh1GBQELdUBVZXw2A0IWQjADVmp5WQNEBBAwBBdkdVgGUFFGN00MIzwZF0VxE3Y2QWUOGlcERhgnFAo0JwRCWFNZKVVWESsGXwYVBAJBVGZ6XRdEdgdwVVYRcQJfB1hfMRMyNQdeRU57YgUYKQcGBUgTQ0QhA102BD5VGH1mfQQWIHoES0VIcAo5JTkALF4sekwOEz4TICdXFHcEDEg8FhlaRwAHcHcmFA0tMx9GCHAxCQExKzBIDHRaADJRJQYrZRJBBzQUKiMDW3kffVwcFTYbDAtwTkdsKkAvMhoCf0NiZHVAFjIAOkEAeFscGQZlB1F4PHFbAUYLEgFZBj1mUw4yJxISI1Apc3wMPQsmcSdgJENBM0QgFC88cSF9UWk7Bi4gC0IEZ3InAQMIEV1nQ2NdPUchNh5dZjxRXAIAURsDHmo7VkISEVciGBBzM11HDSkoH3w8VCEBZBsvCmQOWmUdSnonPjwEejpjIH0PIUQiDRleBSl6VT4kMS8yL

http://www.distendspretermitted.trade/?RCjp6Z2I3sOydXQRhrHHwdQWRlCRFbKlstDkBke11WRjwPD1wdJmgsHE9xdyRaATM3DwMdHl0 XR89Ig4VRHxGOQ4bJjcaVQUbF3t1VmAFGgJZN0I9VxwlLQYfVz5XOx0QPS5PQnB/AQ9ABjEgDwNFfFsnDhsmNxpVBRsXe3VWYAUaAlk3Qj1XHCUtBh9XPlc7HRA9Lk9CcH8BD1ASPCAPHBAuRjoCTmN2U0YAYwp6Akt0IhoDCzJGPUNWYQJPQnB/.../BwUHWDZdKFcWIG5bRQ9sBHALQGN7RBVOPxQnUh5vBQUeQnF0JUpYFy4DAlcuVzoYNz00BBxZO1YsQVUxLgZNEDtCIF5OOjceABNpc2wBNXdxLABENV85Rxc9NAQcWTtWLEFdMSwHVQQcXiZUHHwzBBc=

http://www.distendspretermitted.trade/?4TyrFc5UXsXTBEQ2hSG2B2QQJyGhMrE1wxZUACbE5UNgUIGigWWH86HTQQVH5pRx8dUiUpEV4mMBxEfzQTKBZUfhwcQzoVHScHUCd B0RpEQYyExBmGVYGElxAABNHOjUDQDAWBSgPWjQ8FkZ6Gh0rRgcTfUByJwwRJQZGJn4aWmkRBjITEGYZVgYSXEAAE0c6NQNAMBYFKA9aNDwWRnoaHStGBxN9QHI3GBwlBllzLAdHZURDdVYHZmFHAGVLVCcTRmgwB0AkXEEHRgcTfUFyMhgBMg5QMTESUDsOHCoMVDErXVc7FFd0JVE6Lx1YOxgWY1FzBSocWSQNXwIMQjs0HFUwHABrUgZgakANYE1DdE1QLT1VWjUUTwkTUDlzMFsmChNtUgF EVhjOwsZNQtaJXM VToMEypIcyc9Fh8QFgUoD1o0PBZGchofKl4TNCgaWWkRBjITEGYZVgYSXEAAE0c6NQNAMBYFKA9aNDwWRnoaHStGBxM0HFM7VwIoBA==

http://www.distendspretermitted.trade/?bVvsPFzHTWCzJLQn53VH16ZVRwFRI9NhMsaWRUbkFVICBHAxkEEj8VHHt3SmNkfFZ9NxAkLwwpIDgQfTIcJygWJzUzByRQByB7EjwgJ0dlN1ZiAF96EicQORsDJCIVPzo7DTcSFiJoGSc5clAQU0AWNQ8rNzIRJVAaPnsSPCAnR2U3VmIAX3oSJxA5GwMkIhU/OjsNNxIWImgZJzlyUBBTQBYlGyY3Mg5wAgcjd0d5bGdSb0FKaHRKbjUnEWseByQ2X3sVclAQU0EWIBs7IDoHMh8SNCkNJjg4AzIFXTMpF21mEQY5AR08KRsscWUkBgQcPTYOZRA4FTgaHDEiHzp5ZlpmRkpnf0J6ZHkHLhNVPicXdR8aMSYfED9tS3h/.../G044Mg44cWQjc0Q1dXQ8OCY4DyYCFz8xFCQ7NgYzBF0zKRdtZhEOOREcfjYULw==

http://www.distendspretermitted.trade/?xQ3FrZMjVXETUOd1xrY194ak53UCcfKiQOa2tOaQRgAjxwIRsLCDhQKVkMe0EXOww4RScGNT9BEjcPP18pEz4oGHAsCGxbMgYqaFkXfUoXFnQ0Kj8FOygMNVwxHDYiCzI9Cn9QKR9/fyxzaz4iRiURPz4ZcDEWbFsyBipoWRd9ShcWdDQqPwU7KAw1XDEcNiILMj0Kf1ApH39/LHNrPjJSKBE/IUwiLAtgDndGa3VaZWlOZAdgEyo Vz4sDCEWdTN/.../LhklXDRZHiIdODQXMFcjAHwuBzplXjBDLx9nJR4iKF1icmNAHGhYECgKPl42Bj4iHTg0FzBXIwB0LgU7fUoXXykVNWMaOD8=

http://www.distendspretermitted.trade/?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

http://www.spiriestwd.co/.../f1YKQg8AJ1I aAt0NUcOAThHdwlWRQtZDg0sVihgCANTAVZdewZufhdXHVBHAileZwN8dyEeJyMaGAkdfHchHiopEXQfAxJ2CkIPACdSPihLFAZYDVFuUiokVA8NQRUcbQAbaAt0QAcnHDpcNz1NVgpCDwAnUj4oSxwGWgxJenU2Il5dS0UPCw==

http://dollarinstall.com/download.php?id=70&pubid=13888&appname=alfahesha yasser alhabib pdf&prefix=alfahesha yasser alhabib pdf setup&url=https://archive.org/download/eksabcash_gmail_20160104/???? ??????? ????? ????? ??????.rar&img=https://4.bp.blogspot.com/-dOqhEeJ4xPk/VVVDlQWSxgI/AAAAAAAAAlQ/dv-n6Y2T0jM/s200/4d2a618d0e24e91.jpg&cmd=&ty=http://www.dhbiweb.com/2014/.../etoro.html

http://w6.mien-phi.com/Data/Soft/2016/06/.../FirefoxSetupStub47.0.exe

http://www.ritenutoow.blue/?qBsinwE5bXGCZOWEBGawBMakdkEAgDByxRX2tHekRPHhF4eAMqBycfQjsbMVwPOQUnWCgCGyxUDDsUaUFCPhRuHiY3BiwfBg8TIEdELAF/.../

http://www.porcupinish.website/?YhN7UpTL5PMAxzBntBenkbYm9OLVY4AD0oCGNvUHkRJRZpCkc1PEMBXjlbBC1cPi1DCF45BDE HhY2GmVnPR8gZ3E/LgYiWDQUMT4TJClVJkMhAHF/.../NBg6GhEfIyJZPzgMK0V4QWd0AmZtXXwCYl4xNFB2NwkjChMCMSkeHzAEZWc0GTo4HhYwBDpSJ1sSI0d7CQAhQzoDPCNFexoLZXM6BzogWjE9DTwRNh04cRMxKQEjCj0EIDwQYxhNfHFwQhI8Rz80GDpTOgc6IFoxPQ08GTYfOWkHFjUHKVh7ADor

Latest 30 of 73 download URLs

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.