my-paint-0.9.0.exe

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
MD5:
b2fb5b6a7db346d442f667a465064674

SHA-1:
4a8e5558bd361fbc0a3e35fbee8f8885068d5265

SHA-256:
a0e8604dff23222209736ee63024cba061f1c79f210c22e259680c0b82990e9e

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
12/27/2024 1:08:13 AM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
PAK_Generic.005
7.2.260

Trend Micro
PAK_Generic.005
10.465.17

File size:
8.6 MB (9,004,748 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\my-paint-0.9.0.exe

File PE Metadata
Compilation timestamp:
12/5/2009 4:50:46 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
196608:Fhfv3XcarXsl0TBieQMPSny0HV8X9tWUtJNqBgj63byH6n:ffvXlrcl07QME1Ybqaj6z

Entry address:
0x323C

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 58, 3F, 42, 00, E8, 09, 2C, 00, 00, A3, A4, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 58, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, A0, 36, 42, 00, E8, BC, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, AA, 28, 00, 00...
 
[+]

Entropy:
7.9990

Packer / compiler:
Nullsoft install system v2.x

Code size:
23 KB (23,552 bytes)

The file my-paint-0.9.0.exe has been seen being distributed by the following 50 URLs.

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1484799860&Signature=KjL6Zhc2u0ekgPXO6H--qlr4rx85ZcHQ~trEYCQ5vhR8s3l-pO4dvUUrxFhmnbQsJ2NfdoL9pOLlNyYAFUM4lsU7g3V1CA3KIZIj2SvNqMF0CmDlSixdb8RanYl4pBk0726zcLlRTVYK3WTGIvLTycCJtEvh4Dr9Fzp2zjJ-jCU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1481529708&Signature=ET-O0PmJUzeIe-VICNHR3YiySOwsspq1Jm2Ii5JZwcGy2LXmgo~hVzv-s8WOw4Nt4lOCJHecCqUmljhbSuedbb9nLg9-RIQkm1M1VcBb74QPA20TDZFImPW7ue1XubwVNqlpiJ5jFV3nN9nxh1UUThJtTfinRk7eFMHLZ50H8ek_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_en&type=PROGRAM&Expires=1486113553&Signature=gWGjLTb68fMGIHO85PaDwju25YdRcTCPmXdYKA03hVJ4mUPHZmzsguFXv3mI~FG6kvnuV46PNXUruMvPMR5qK20Pl904yx6wtGnvZ8LxAjs~U6oNLyR8-NcHbtnaMqCuE71xbBTkCI6ZodwpIOMx60-fgZKaZdRProgJqN6vjpM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1481007074&Signature=AUVfv6smp07R9NxY8V89Dd5lnWBGDuUJXAgWi0igqZ25wIDpUq2JF6oNm2ZT3vbZte0oyt~qHbZ8BExtESF2Vowzh-pTlEB2zM0ZAF3OtOecCv2H-V7a6L-kyNqj4AofRq0dpSEenZ11OpE-vVZkYGQc~s6cgToEE009SBasmAk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_en&type=PROGRAM&Expires=1486026356&Signature=cSzN96ynQYNda1J1g53spbipoGCNOCRWuDL0tn9YctVxRckIyKh4glsSK6BiUKMGnHZyk6uGIary-vqzuk-yC3ZCQc5r4rnYwg5qUi5ysabzsgAtbZm4C41i5WVuvl3BBgkHXqp87CLEWpRffEY7CObv~dES9KPkN7M1C5oRtMM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1482838982&Signature=Q7yktX7iLs4zyfzUDfxAZ73i4rhAWswR0F2MtLTNBCQuivmJcQgci09hMmH5OMN0RPWt-CvVoRyx-oETw3GXnUljwaaATBC1zyI1mJsoysT8mARDnljxXxQgnaFARWEyg8bjtCipQvumZrJUg5J4XNc2RQ0pVDZuJZcaWgbxy~E_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1479176359&Signature=KR3A3LREN3njj8B8IdPt~NNy1h3VK3jFBxU5GmTeFV8xfgb1upg0cscjCr5Np~jvRKxqC8S9aKwfk7OZWzAud44R8XO0SYPqEvuFZ4ZRn5ojt33~VwXmJXOvPw6kVoczTUacUjL-bzUg4CSwC54uX4zidxEQ8e2JgG3E0EvLY88_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_en&type=PROGRAM&Expires=1470014801&Signature=ZbviKE7WlVBj6giTgJfjjVbteSG~5xmShpj7SNeyfPhq9e5QNg0pHVmMfRyMebJhT95jd1hykJWsvM67j9zazpNX4HMo0KwnIBMXM~IdBxI5jtjmxJtqNo-AOB3gbz0x~ZmxgX7gzb2zTGxs~5BMimyFUK8RmlvNqFCtn041YEU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://dw.uptodown.com/dwn/-EnwiVyGfN_5j_aavsYEb0Fyty2cswT-Vu6XWcQxsSJTkLuq7IZfISmBnA--yxGlB94R8g6kVw1awHlz7hVK87WEaYPP1qkxAAjaF2gCdoW4XXvtZPsxQAmN-1W5vP5h/y5i0-CIdGw97_yOvukYeYAUpR-1h1ktfUmISTYg2n9JruucIOxavG169veacpiO_divnaGvsoQqMFe5GBjJ0xrbniTcmtdlj2iYSOKJFy60_vF2nakEitBtgukuo0_Jk/.../

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_en&type=PROGRAM&Expires=1477286142&Signature=K25Yj-o-UROYyNy2fRxpA2QmGMhhq0lTjeKcUDzVI2bPEOVFwZ90a9vo07NVOBl819gKRpl-RgC7EXl9tLWKahaBS0OeH31ekVaMkvKhbZqoJE1wFU2ISBOC6hTJLQrNbOFuPXh4N8aKC2E84up0CW9OYyD8QEYnMQ6SjDi9Yv0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1478690839&Signature=bsh2QTgEDpI41OB60V1RRfmJsmIs6GHU39svd82ZhJLPBo2k6VIbuS77MTnF4jxxD2e~uTZ9jZTPQq31d~VeWhWo6VdAT~-y50S0IVPgOWMtXE8d18BGswmIGXWvk6lXsHmZEucfzgKwbsaJUq9brchGFc3lVDD8xEfd~drrixE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_en&type=PROGRAM&Expires=1476966219&Signature=IrkLW4-EIFc5Q~y02e-UpnMo~j66Si3r8w5ODBfzreB-w8LQqoEpc5E~tqkDuQ5Rg6cM86wA8N6SSkyyxCnKz1ul1eH8nxGjD93inTG4ZS~JmGc8~el-GjT~4-fCOIQtyjW6yR1lho~G4~fKwfcYng2FKndg4H0UdPqqceldlcc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1478228380&Signature=TXlh1J1~s1RQvNw1dagW5VXm8ZMpVduGjUK7xJ9gjmp6SJnVFmoYio9hTwHitrIg7cN4DvkcHAxvb03qZwQ7oItuYdL8v2CdpdYL1b0ocpCFa4dPhq2tPJ1GiN4EvAnzLAm3N5WEF0qIIEF0nq4AoKWlB6xitbYV3hzkL12QUug_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1470621744&Signature=LUorRWyhGFl3kA~CmbC7lWQvf3bP0GHUd2s5dDs50z0cymVQw3IfOlGLkBCbRjQOSJesm0UJzURCJaiStxXuDUw4y25eBOyijb7jOi8J55MtfHrLjgYE5-E-fKH2YXbFCO~n9rJ4DqAUpyjjaKRY6drLrRYTfdug83vVyv6tQ0U_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1470736446&Signature=eVww1byaaCKlwrZsyqN~Ei4ZiqUMIKYEKmROwo1H6EBlPTeal7a2leWa9oDXmlwsDckwjPb3H57lzXwchw3f3PRUqzmgD2qcQx4~hTaxW9O3ENfZFyvZtQaoSPZwI96cjBZN~ja18RojfzKbnKW4LaeVTEq3mCvpxzhpfHGbiig_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1478560475&Signature=gsy1rn09D31stkp3MjtTHeKsYfHdFRnfXL1SYGyZxfOSzu9OVR-yq6-LnOUw5KJrlupEKQcgF-d98Qj7du17Rs7HVqOVgpPViWySH2pKjdeQBf1l6NJcESjAyGFqpjdLbN2mObI0WEz~wUW-GT~1k0OVXVQvw0zBkJy09b5SG6w_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://dw.uptodown.com/dwn/-i1_t3RpSqZvF3te1xKnMi8A87FmJvXxrJN72BYgBZFmBNdsYqFhYBb44aoaftpNummBL2bBgtoadJZtIiQCfKYwZz0hXW-TQcfeBqSU8E8MWZrbviCI1mPPnPgizNZb/KVXrA0-0wY27XpMQViR9GKM9-Rj-03jvxSQ7YiBKgdnftJMR82ms-1foYa8x9wktYwsArjSVQq_HXl_EEwiKNwWbKfe0qbOptpEzqhHn2nt1joeELa-l7wrC-ctysUi7/-q-TvjRyfcwtWKiKbSNmzhsN8gl0BMpQKLNkOEdQYH-LoGUv72T8WpUL_f2Cv5iIZKcwYWuDHPXlR_GSGcL_SPZozIpCe-jd_TAwN-9dyQCA2jx5wVRpPfTEBENk1Q_k/.../

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_en&type=PROGRAM&Expires=1471010911&Signature=cuSyPDoS2Gj8336i1pqOC6nghTQBtxZ8pyInoNCrZn88~Smw1uxx3w7Dsv1Pzap~Yw--qhmYRUDgHBijZIMhIDf~rRJEjhJju6SG9ccmA6yb~M8bOgNHawFZXLHbJ76OuSTjcYXYHwz8UCIDV2mpGMVxOcPZJ3DM2yvgvNIqcGo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1474615177&Signature=GD6czel8vepwgbRFEOsQ7Vusqb4B8REUERTUzOBEEOj5wvYG9MEG95TmvGHmcIRR7N~NE7HIhM9dlp9CASW73NztjFBnueFei0cN1UBNMXW5aw00jw0gBNY5wyJfz5NN1062MRICjlqh13x7zY2EcZoLIdgFC-FzExyevxtA4Wg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_en&type=PROGRAM&Expires=1483374792&Signature=WdoFX4ieov12ntegdB7oXafkgQTHk30BWfGMVRP1-dCMgLYNNet4Wp2aJ7plO9Oy~Pn9vyUwzKzut4iPtzHEjmMbLixY7p9E-7SsQXhormmln5aSYNeBVWulCJBIi0bLsoZI0QnbH3WnLtSTeDQ8J5s43djF4fX~aJokXFuMXBg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_en&type=PROGRAM&Expires=1477926083&Signature=KCb0l8kR2VlDZHt2deo~lBD0y41OEY2gbNuIK-jYH4o~qVIm71TnaAoC7Oq29qbjnG7hFCPSXSKI3G4D25TeXSoDG53Xx8Ax6K3aIjoapzw38KtSd~KA19Wm--oSsg~7ri1EnICabQUjiIO3-xNCQy8T~SULGDc6VzALYRGIK9E_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_en&type=PROGRAM&Expires=1477116910&Signature=YbrJlKqNeS2I-DX1r19LupwZFHl4AQph4soq3X1dES16dMKFnF7~cyxQ4hjHoXMBjgVCkyxYRgPo542iIao9rPY-c~LieOFQyqwb53LcmO42bv6wNuOZAFY-ArYG4CPbt-sVE1yejbb5VWPm7SD1avJ-oGJi9zd0-x3uPPKDXls_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1476604306&Signature=BXVee2QtI0D5WBz4uST1V6dNcloLEfiW9zGtLDusK~uY3y9rgwVfZdNGKoKe9Mi6d6Jb27rtJE0pAV0WVcQR55T64dUDqcx-ixdVqfglIAkamtxi5jDUdmx2G9PawFcPIu77EkYS6sDjjXw7JvqvipMEO6emJOPy-tcQWDUuzs4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_en&type=PROGRAM&Expires=1474265347&Signature=XERADn5h1caiztx6~BpbPY-aZImJX4fmbx7eK5r0hJvNNjkWrlKihVILfApSmB2lttR1og2E2Dpm-VjOeDXcpeiQAiCN01jTlJ6F6BS4mCi03UyKFykva321~50U0-tFDouaQ4jnd5Yg0l2tpM6MckpIsoZRUtVrfnnSdL1Aa4M_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://dw.uptodown.com/dwn/lgU6WL2LnT9tBNQgnd6xb0UZ6hskelnoRFtTDWaXU0uOWjF4MDr24qIcXVd8gvI_5rXE7H3jPPpiNbQmRs5abOYUUJjqWfhjlAjkWOAB-ouYRYZn6j78bI9aCSz4KCot/54RvRzm360Kwm55yIL0kKuytHUeZDMxbSGXXCNQOr5kK7Ttu-8oRqPOhcSlLf8phCecZFAB-K5uTS2tZaM4c8AekqD0ejcHhmZPs9oWhcJMky75-OX2BfPUfNj9Y6vFP/.../

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1470472744&Signature=DuyxMutLmlnK-umrxkbpe2EOX02pCiYS96Phv0NjIsaHLS435jj95Z6f8rRYI9eOlermopQB2XzZbrDJ8uD8MKdeG~Z5mVbYRokOloaL2oT8CLyQT7tt6etm0SjMU2IaLub06cCxlcxnME2jb1aT75rkXtNUbLjBcuU29YPE5Hk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1482746500&Signature=KSHOoblxcQIlkkjlpoOG79tc30~diC6DQJIb2TpEnZzS4N10~5K9zGECWULaZadarj26abPFylTktMRFtVWWVQLp93FA9NxL5uAtTZywxSsc3L5gaVJQWCaoQKHWrcrskrlDt8YGyR3onI6onkWa0Eb~dngP1AZGUzJSwZ-6Gv8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_br&type=PROGRAM&Expires=1481176517&Signature=BKm9clD1tmZNAtvPT6XmGbZBLK3XhyR~1G7QFldOeLRo~CTLFuZ3KQrm0QI9jKyIH4s8HTRuj~CaF4XqLsaWXzytl40p34D9vtyCltvWho271-sm6knegK2g24rhLPb9JSmQj0l7rQ60gXgB9HflDd7rBximB4qbZgwg7EXsprI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_en&type=PROGRAM&Expires=1480461634&Signature=ejzFWNJyQ9YT8A-Dn5dTz5s4nScEnW~fhh4gpVFNXv2xKzrzUQMwrccJCZsEaA1ovpDatVOEqEu4GfZURPwrgc0qfMH~mCSsNp6Rd0Sp5Lg6MlRpdChrH49gpMVLo6UWvMYqKPopl6xWEkR1kgBJnxNou-FK3M7AHEV1sK1l-7c_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

http://gsf-cf.softonic.com/4a8/e55/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63865&instance=softonic_en&type=PROGRAM&Expires=1470911137&Signature=YCLFVxo3BdsrEErIJv6u5teURH-z7WMWPeWrq6y5qrrHJtDn62bxUSpoBUMpZe~5tfSOvpnJ4Y9PuRRAY6QaIPQElr9aw3fnJCwMV7F2w3kB0AHfsPbwb-myR0kAmLl6RXFsUur58rc8vUT2J9jcsFS0g9j7dur3GPmjerRfifQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mypaint-0.9.0-win32-installer.exe

Latest 30 of 146 download URLs

Scan my-paint-0.9.0.exe - Powered by Reason Core Security