pngpsdviewer-setup.exe

Wenovo PNG PSD Viewer 1.0 Installation Package

This is a setup and installation application. The file has been seen being downloaded from ftp-stahuj.centrum.cz and multiple other hosts.
Product:
Wenovo PNG PSD Viewer 1.0 Installation Package

Description:
Wenovo Setup Package

Version:
1.0

MD5:
26ede96808d6f1737a5cd93ee5cfe479

SHA-1:
b643d6dbfc3ac51a738aec3746e098a0e4c2310e

SHA-256:
3c72e77793a8dcba20d75bb746366391585e9c5d2fffc50fb7200c02298c6778

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/22/2024 9:50:01 PM UTC  (today)

File size:
1.6 MB (1,704,082 bytes)

Product version:
1.0

Copyright:
Wenovo.com Installation Package

Trademarks:
Wenovo PNG PSD Viewer 1.0 © Wenovo.com

Original file name:
wnvpngpsdviewer1_0_setup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\pngpsdviewer-setup.exe

File PE Metadata
Compilation timestamp:
11/6/2008 4:51:52 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
49152:QTC4uOVcY6JLlV3nTOJ5v3fahyErvhBobMVz8+Wkv:Q+a6JLX6CAWXG+Wg

Entry address:
0x2FB9

Entry point:
E8, 2C, 2E, 00, 00, E9, 16, FE, FF, FF, 55, 8B, EC, 83, EC, 04, 89, 7D, FC, 8B, 7D, 08, 8B, 4D, 0C, C1, E9, 07, 66, 0F, EF, C0, EB, 08, 8D, A4, 24, 00, 00, 00, 00, 90, 66, 0F, 7F, 07, 66, 0F, 7F, 47, 10, 66, 0F, 7F, 47, 20, 66, 0F, 7F, 47, 30, 66, 0F, 7F, 47, 40, 66, 0F, 7F, 47, 50, 66, 0F, 7F, 47, 60, 66, 0F, 7F, 47, 70, 8D, BF, 80, 00, 00, 00, 49, 75, D0, 8B, 7D, FC, 8B, E5, 5D, C3, 55, 8B, EC, 83, EC, 10, 89, 7D, FC, 8B, 45, 08, 99, 8B, F8, 33, FA, 2B, FA, 83, E7, 0F, 33, FA, 2B, FA, 85, FF, 75, 3C, 8B...
 
[+]

Entropy:
7.9446  (probably packed)

Code size:
28 KB (28,672 bytes)

The file pngpsdviewer-setup.exe has been seen being distributed by the following 4 URLs.

http://ftp-stahuj.centrum.cz/dl/536a75d88a7f41b7d995bcde57aa274e/57fd2db8/stahuj/download/software/secured/p/png-psd-viewer/.../pngpsdviewer.exe

http://gsf-cf.softonic.com/47f/738/.../file?SD_used=0&channel=WEB&fdh=no&id_file=98706&instance=softonic_en&type=PROGRAM&Expires=1476768492&Signature=VYmhCuwAb~ZRsAED2eDlgiOPRSYxfNDoo8WjGIY5KruG1aaPwcIw6yEr-VmMd3~coFkAXEs~67vDBqN8IsTkloxdSHu9Kca8snuwDeNZCtxpfViUSjGMTSRedRq4GNqy3FWidEfYYehbC0QEIQ4r~5lpWXzqylswuGF4aqaEaMU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PSDViewerSetup.exe

Scan pngpsdviewer-setup.exe - Powered by Reason Core Security