goprostudiopc-2.5.7.544.exe

GoPro Studio 2.5.7

GoPro, Inc.

This is a setup program which is used to install the application. The file has been seen being downloaded from www.bytesendclear.com and multiple other hosts.
Publisher:
GoPro, Inc.  (signed and verified)

Product:
GoPro Studio 2.5.7

Version:
2.5.7.544

MD5:
f084bd02555eab96e90d475e9807f9b8

SHA-1:
a68c47e15d0749ac37784ccb432077bc36b73654

SHA-256:
8b9eef3061a9e6340f9ee13ac2b0a4a7d4edf4f8737bd983afc725e4e243356f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 12:33:10 PM UTC  (today)

File size:
115.8 MB (121,375,320 bytes)

Product version:
2.5.7.544

Copyright:
Copyright (c) GoPro, Inc.. All rights reserved.

Original file name:
GoProStudioPC.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\goprostudiopc-2.5.7.544.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
4/17/2014 1:00:00 AM

Valid to:
4/17/2017 12:59:59 AM

Subject:
CN="GoPro, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="GoPro, Inc.", L=San Mateo, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
584F663F5DD80DC5E7DB6E97083A500B

File PE Metadata
Compilation timestamp:
12/8/2014 10:44:59 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
1572864:UCf9DjzOT9pbANjstN0wuU8BaacRQp6PC5Q/sEAlQvMuIBtqsClWtFg+wCGyYppn:5lLOTXbA4NXwaM+/zL0RqGv49y6pRxr

Entry address:
0x2945F

Entry point:
E8, 00, 3A, 00, 00, E9, 7F, FE, FF, FF, 3B, 0D, 00, 20, 46, 00, 75, 02, F3, C3, E9, 89, 41, 00, 00, CC, CC, CC, CC, CC, CC, CC, CC, 8B, 54, 24, 0C, 8B, 4C, 24, 04, 85, D2, 74, 7F, 0F, B6, 44, 24, 08, 0F, BA, 25, 5C, 3F, 46, 00, 01, 73, 0D, 8B, 4C, 24, 0C, 57, 8B, 7C, 24, 08, F3, AA, EB, 5D, 8B, 54, 24, 0C, 81, FA, 80, 00, 00, 00, 7C, 0E, 0F, BA, 25, 60, 20, 46, 00, 01, 0F, 82, 3A, 42, 00, 00, 57, 8B, F9, 83, FA, 04, 72, 31, F7, D9, 83, E1, 03, 74, 0C, 2B, D1, 88, 07, 83, C7, 01, 83, E9, 01, 75, F6, 8B, C8...
 
[+]

Entropy:
7.9995  (probably packed)

Code size:
270.5 KB (276,992 bytes)

The file goprostudiopc-2.5.7.544.exe has been seen being distributed by the following 8 URLs.

http://www.bytesendclear.com/ukyGMgKT4xCkx6LP_9JI JvOBgkMTEjmg0 yibxogF21gR 5xoUoXiaTWOpEs5U 1SeewAgAc3neoMmpJtmLiKNa5sZExSAvNIdghA9dpPSkQr qPg1A49AjxYoENOHR 9pMa7xNNYjy6qGC tVf7r3X4rFTlCXyXYouuN9pksYSyePM2E5aJLNya6RzISq21y9u_UxTkj1v9KJNx2oQHVHlm189VRvjaCvRSpsZXIWabP vUWQtImvr3vJPClRpc2u2ux9hBbtmwRnFtigZZZvTCUGhcqPVlcEznBpE_yefisXH7l7eLrr_AyK2xgkofrn1dwbXQzQnr9SB CHY2gHweGRy_EcDMKHK9zD6KlpBajlpuksQzrvtgIwMpSFIPX4whNrR_r4L9JDJdS tKXhe9Eopq95WK8WL_cx2y01yDQNGOTmkQ5eK u6D10GiqolLzwygsYLNk Ky4ZEil0Forp 5oRDWOLJNMIqObJAxJ 8jqzPlhP0qaIwBA_o7 ce6UeYT DE9xn8s 8ot9F2ymj_Ayi4wyq6CmzFYkTDTijZbRSchfjh4uAggVBKaKgQytYMFwpMJ_qxUBKeHirgtaWTRVSM7a46br5Zsgllth sB_CA=-G2EAAGTZXEyHEm7ayOa7ODjkwOG7ZhBaABBsjIFnCZ5 rjFFyXQHtMJORbJegN4_tAY8Xv_naUuskIBL8Z2wf5UNER5cw7LDUbMBYhO15Ei Eg==-E

http://www.bytesendclear.com/swRVcnAehEo8LSl0pPI9tnMCT7fzr1T5dINqIvqHIE9orICzMT_VeSetjHG TUARrfefd5u5Q3Y4S15ik0 d1pb1gHXIHkk6bKrFMalq2eM68kjKN08pX9U6TmAmkGF2YoRMzZCNE4BsVpPaT9Rbf91OZyNpzn3l3XDvqUznUnmoPZt0kSQrnnhzmWBglFYI6K2TeyCgGlHC xTK6pNx5aSyFYZm85S6aezNZtzmJktD4KZzPqy0amW2WLcOedrK2nI6xVWnu5lKQqvnDSFvuRckQLn 4ATYMSE NN2DfGWzGtn5VsMFwjvf52Uv3bFb0pp2kXQ3GUd6Cx7q tPGWRE9D NZF6yCABHwfRMdEX8Haf1FqkuafnXpmgfsp76 LU3YMFkDBGjtOkMe32m24sDN_QxgU jJjNhH45KDbAhX7b9_DqPryHggipBK40Iqgm2aKfu7DUlEMFrGV9ZsiW8LPd1D FEbn0yEX7juetMXlCHIVwfhMVStUONIfubuQfQ64fBIyV_xD6JyG3yAsV TIvsqS6olQoTL a2x1qPPJtuhPaI1NkHvCHzJ1QOD2waWstL41YAY6UMhiIYHqOv4COYfZY6v862XYDvArdJJ58bmgs=-G2EAAGTZXEyHEm7ayOa7ODjkwOG7ZhBaABBsjIFnCZ5 rjFFyXQHtMJORbJegN4_tAY8Xv_naUuskIBL8Z2wf5UNER5cw7LDUbMBYhO15Ei Eg==

Scan goprostudiopc-2.5.7.544.exe - Powered by Reason Core Security