POSTERIZA.exe

POSTERIZA

e-Presencia

This is a setup program which is used to install the application. The file has been seen being downloaded from www.towerbitscenter.com and multiple other hosts.
Publisher:
e-Presencia

Product:
POSTERIZA

Description:
POSTERIZA ejecutable

Version:
1.1.1.462

MD5:
c56d429a8b48230dfe09f9a1756aed11

SHA-1:
15e0705a79632765f6564b15b688c3c0849c252d

SHA-256:
e893130a576f4fa748675680f1fbe1ecafc3f0e557c30b25648ad432ea049e42

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 3:44:28 PM UTC  (today)

File size:
693 KB (709,632 bytes)

Product version:
1

Copyright:
CopyRight 2005 POSTERIZA

Trademarks:
see: www.posteriza.com

Original file name:
POSTERIZA.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\posteriza.exe

File PE Metadata
Compilation timestamp:
6/19/1992 5:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:ATrZodKHB5l65u2R/9Lz/N75CmTwaZIDorLYZeuYRJLeck8:AnZdB58TL//NImtKtp

Entry address:
0x260001

Entry point:
60, E8, 03, 00, 00, 00, E9, EB, 04, 5D, 45, 55, C3, E8, 01, 00, 00, 00, EB, 5D, BB, ED, FF, FF, FF, 03, DD, 81, EB, 00, 00, 26, 00, 83, BD, 22, 04, 00, 00, 00, 89, 9D, 22, 04, 00, 00, 0F, 85, 65, 03, 00, 00, 8D, 85, 2E, 04, 00, 00, 50, FF, 95, 4D, 0F, 00, 00, 89, 85, 26, 04, 00, 00, 8B, F8, 8D, 5D, 5E, 53, 50, FF, 95, 49, 0F, 00, 00, 89, 85, 4D, 05, 00, 00, 8D, 5D, 6B, 53, 57, FF, 95, 49, 0F, 00, 00, 89, 85, 51, 05, 00, 00, 8D, 45, 77, FF, E0, 56, 69, 72, 74, 75, 61, 6C, 41, 6C, 6C, 6F, 63, 00, 56, 69, 72...
 
[+]

Entropy:
7.9709

Packer / compiler:
ASPack v2.12

Code size:
1.4 MB (1,481,216 bytes)

The file POSTERIZA.exe has been seen being distributed by the following 50 URLs.

http://www.towerbitscenter.com/DlcHyDsnik4KujKSl9zz98 2FGsljH7XfwCsn3LkoYQtbDVWtxKY JlcOISn4ExD90G_4gwSGqNV4mYZjFdgbz ETs6N_a4uHopD8sbcNwnI68GV5tiX5mnYfc1LL9lU0D6_I15M0aMM8PC0SBHwuHJXn7nlUg3UgYczqZpOfLFLe44eBB1UWBdMfUjC2xXATEOJTnyfxZJSFY2CKXWxlmE21gYiBA==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

http://www.vaultcapitalpackage.com/sJCi00_K1A_GUi jn1I6V99lMmpLEA3r9qHh9jB3GHlv6HMiqhsm0F8LlDy3vkMjmIuFKUUUOQ5kRcotoi Uxoc0xWluC4V2YCTAc7NbW9wwDVPTnzukWUt_lxElszrpSERpN npsr2gqezYtOKMcJLSlZlDyNu6grX28IE79wnAiP_ZoDjT8cqz69sEyo_rE6thcjxzAuEUCYdKcO_dsAFJ5o1BWA==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

http://dllold.org/.../11207_posteriza.exe

http://www.packagehostdownload.com/YURw2w3JeQ_eeJ0Qerge9oniSrX7QtmOet72o7hWEkPUEn_WwBI0Q1oB5jLjG1Lrv8Xv0cD1lUECW4Iu3AMU02OR8GpHhLbnwBI2OltETV2rjVbLjljL4nXKiM2X2LlZb8W1CQZrvYNouvUYP32S d8pXM4t JR8mVXtVakJBpWSiuJRL6954eu4RsCkgNoH3pdP71Vso5QVFo2Ef1aI4v649vtq9B3twGw87mAohF1ScqTmjp_SzUh1UCg8Q1HOuXHNIsb37gEJBRsI7vVTn7wOaG9lYw1glV5UmxiOHQthTxXSpWqPKcsvcrm2hwdHmRbhmpqN9e0aMng089Eae0p69rlO1JN30Z_kpJRvMiPhqj2B0ZZcvkIIrRyn5_3RKwrjEkNuqY h6o9cl41p85qGt6bDWHkiW_JnEqlLh2YlFX4q9OaKXcgosH1Vxjbs6jBol1W6XnCLJIPDtYDc_XtZmRLD5hTP5b4OS3V7cgCODO5G3kDAMhnwHdUtof2TY vZBk 8VsaT4zeeTAuXc_SypPtBvMhImQhWFT1JUq3TBpv5Rh4=-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO-e

http://www.vaultcapitalpackage.com/TNz18Tchs221NrPGZD 9A blEkEZzOP6dVyZzXI3dbU2Y6EV2p9AIXcWg_7GteCthYWzl2HBOdfp_p4fGQR3RFMyWnKmIyGu73lftD oxQaTAYeUKybAx5alGuPoQ63PgV079GkvyCPI5n9 Ixi5Qk3WtvlXAhnOjoUyPIrMLU9yUrR2JMBd9WO9WWjV0ZEjZjnKGErQQHPqMLLcSBeOT4O_excl8A==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

http://www.packagehostdownload.com/mHHeGKxQaalaNWFgfj6 93Y6QcJVD3tx3VJiqBYTjaY469Uir0mNu7SGNdh64yiHMibxN6p8EzOGlejI8KUKmvKGkeEEaFPCHuOOjAofUkhUTXXmt8IE3YgViUA5nk3vu7x9dDtpBQysDTqA8HtiuUs84EX0HJu J6oFycX8wbvhPnGdLo7SdoESc9GYe4VO6yHuxPjHrv6Pd 0x P_gtNNNM2SrCA==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

http://gsf-cf.softonic.com/3e3/01c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=41923&instance=softonic_es&type=PROGRAM&Expires=1465278006&Signature=MFhf0Wv-2Cz2DNBPYhr-FQwwmtN3I-9thjKQh2Nhltj2gzM9uDuyAinGSE7KNmd9Qb2U77msBXKyXzaMCeGkGMgwo7BcoPXk2cZbBNp3CeEc2AJcnBiC4StDEp7iVWsZSfL26fm55HTeFljfZrP~g8cP4CK2KGM7kKiOK-dy~Gc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=posteriza.exe

http://www.towerbitscenter.com/VTy8kqk1hd4etwc76OYBIHuJaFE4mNnsLQWV_9zCeOyX8GTRttyDDscgeasfn9LC6 E3DjmGb4QEffmufi0tB75AZMIwppA71A9sWRl1zlZkSjvtOfx4BG4LbSzCLB 7fxXROm1YTqyLwCZ1u4EBROwarRs9L3i_Qag6_McaM6z5B3Nm_4ixaEoaaqqyufLfcvC4NLsx0H0IXXDJbm_31TkRqMgV2w==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

temp:Baixaki_posteriza [1].exe

http://www.towerbitscenter.com/HClW4IezjudL06zcOVP1sQqZbe3qVcG ooWrr7oPntRWE1yBHG18CcqUXwBqQ6kcLC_62VFMYAqADNf50CDoGzX K6lSzgcyrApqB2eS2FvmFzF1rEYXNSijfdUkQTbpcD9UGNYW3xPzcpbTzC9BWfVoqB4dXsr1DPzYgnRzSM3PZayuNuHOwCyuQiaZwkeW9Y4v2vNjQUsWsCI15yc 9KWAZVvlNQ==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

http://www.techtudo.com.br/_/software/.../download

http://www.ranchsendgift.com/CyUEoUErbgKElL6YRhnqacp2pR t76Or4jR3s3kKgGyoCsczlJY0z4jNNbGCyw7_Khu278ddYfanTj8uomWvul14179ClQBLmAc4Lywp9hr1tz0N5Pllq9Jxn6vje04fzEVHlyxI_SExUriG1jaTJ3KPSTVTZGLGaIVVHWQxmzznhUeLXffyY8GH6l74ZVCyrSF8qhMcKET70v7mBTp07OCU6KKHRA==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

http://www.ranchsendgift.com/TEPkxHNL2xewyjnwJgLEpVcONXoukLqzutcspIFqDMaSzqOS8oB98htMLF9fusfocd8yPaRSGl3aDCCoaG Hi2b_LuwZvn7NTzag6e3ExIvNEGcHX034_68m1aUPstiufF9hi1Mc1zVXzvKPkk2_ABjC9_PxQyuGxA0V9ifAwuR0X0rA7EjnCjEyYoL3v5MCzzb4EVjY _PIMpJ j7qt3 q9yiOFfg==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

http://dl.freesoft.ru/down/60e0660d6de14556c2b02f1270a5a545/.../posteriza.exe

http://www.ranchsendgift.com/uAXfIfHVp6XL4ABoFZRk0cqyUyBms5gP2 FIOZTFKmuJ_rxkiUcHBGNvveBtUlaXMyoUDwR6Mkianh0cYRABt7JXpWtEf0UBWmsgz5 PwYS5cBMAFhXaNeOlnMex7Jx1PCJuPU9VAF2m2aDW80kgR_rbXTes XdFPJTZChS7N1ygl6FmrlH9TyYFFEtKC2CkOyBDm45JYo2 D6gp1F0vZxjG9oFBaQ==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

http://www.ranchsendgift.com/4EhOcB2jeLIVJGX5JwkscLKo2VUDpmWLMcpvfllMyDf4i_MGzaj8L0H UDy0qiLICgsP8Jstxl6ZxBxaQvU5RINEoojQPXzEnaZ6F DqKxCTDJ4F3ss_j SYkDb O99XOPeXNUY7ILppp5G VJBYxWY5PfEGIzLaoNcydzkCSIYATjc9DMQsuYegogUbn3MqZ9Ab9ZYzajxC3jzElna3PJ0Fv9rJpA==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

http://dc318.4shared.com/download/.../posteriza_1_.exe

http://www.ranchsendgift.com/Rr8y4rFPhtBS_Mb3KcfbfX0B9ZbHYMiHUkVZWFRofuaSp0RMn30B3f95Q1YDwvXCgo2pX2QdhhReLGGG4l _FlGnaSFKzanXr5EHIkaaPTtfGGS_ITNZthApcJBtqZ6lrtLNISMPDMxLsVOJgqrKy OP6vkERQYE32Rha1nRmry7e8txE rWAJrLtyHjT_O1vaTeldMRz61v6cJoO4GTK8o0ODORfg==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

http://www.ranchsendgift.com/KxwYdfA88HYTQdkwnjWwS NCfqfuVZrSjECaBUzkAGoxHmKVioMfDdiux1UOwapB1H98neKoZxZgCpaX3se5zwNeVlyWfhhn Yt9gm4zJtHPe3Bg5Z6x7yRrud_thsy4b4OCGovRnnMw8eSLdB1UM_Ce_0c0C5Wd41Qwa7J K6QdcC_ubHSm_JrgxQktx7k6JO2rvqyUDtMntJ6s2siDMXLqjUkufw==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==VjJ-MpUcfMcQgUuNyspXl4f0oFS1cN437ej7hnfsvKjuM9ym_HNy6V7jK9iCqRUfWy8gyqtsdt-jko-uK0ko8KHOrw/messages/@.id==ABANiWIAFN57V9ghGgeo8H9r7YE/content/parts/@.id==8/raw?appid=YahooMailNeo&ymreqid=1cbcb5da-2dd6-5e73-013b-fa0060010000&token=zitEzqOML3j84e6ealFTT5U7-km5qEQF52lp7AcCuBZ7kj_xkjniNGUUB6CY2VSH1Y9pq9RRIyOGbS-qo9IT0hhNNtU1N0AL7vVRbp7ljnvoXrvqWXAmKM0cYz1HHvee&error=https://us-mg4.mail.yahoo.com/.../iframemsg?id=fc5955c9-9a05-3c59-e446-02533738689b

http://www.ranchsendgift.com/1IxJiw3 NCaNA17s 5CFVoEoQEcgDtPJ6qd5PVTDqYZEL19LSVkFr2926FaWtFAJLE_XCsBkVhbvmPXWPIwz5tSCAb6a0d0CHRJeEzYkwNvBbe0sqmzILPismcC65PA9vIxQm0CcJ8gxco EO2 yXhE0h0Kb51NCC_iOypCfkrp0q7yQAtRr42o2uK95rq_gD5019jljUoBhE_CZRCv42 VAusgSKw==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

http://www.ranchsendgift.com/2gZ3pJxelXJz72KyHT_XL8RFWDem9y148GJ3zx5BYg rE8nznJjIjkFwZFAxLr7wKr_NClTz6t8ebcuSspFoGvSGtBn7YM4WUzCvhAoK8DAtFz7bR0OPMoWNak4jMsQQ0l g1x3DUlMohP_lK1Ks3my3PZdNggfc7iDraLPMUooxlewC5hqHkuKt5mTIoOYjpN2mIfpNcTwZYBjt5 6uQ38LYSjGaw==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

https://doc-04-24-docs.googleusercontent.com/docs/securesc/t283vtog2f9838u7qtrmm9lhfag9q6dj/pmlfmvll4vs96na84a3b3j74ugnqjg0d/1473854400000/.../06973319485889380613/0BxYKT3ZUEXXCa2M1YTEyVllSeFk?e=download

http://www.towerbitscenter.com/l8EBYTKpiLrSqEOzgI2e xjDPEu7Mylnd3AVTqZuXyuzMvb68oDGUmvXtz8YbWG4VVPGhZ0rDQr_8 NXuwhnWQdbh t3d_ SGDhzkgWBDLhsTCF4BHDwl1h3jXVj3 M6sHwkVyiYpcGQxo_EEG_3SWLNL5EiTj2i5MAAuxoohGTxAdGjyL89bC4l4wN2FTNJvxWSKvJLHmsP1lcVWfYkF0TT2KWkIA==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

http://www.ranchsendgift.com/YRU26tPGx26JE059C4ab9CrX_wtBCR3fli5Ov8Jf94J3EGEeP9430HycfxIZZY7DJJSzulr7HZ2gQr9LW3WO4RmEoV_srSOA332xCvZfD_3xqXSvqoj2k4JDehyhacczGgHbxABKyjFp5KLl74do9dL6hbNRPsxWQ5uXusv6yIs2E3FWF1OUxwqDEwlTh85H Nls 1jFJVz iOe8AeIJ55TEknRpDQ==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

https://posteriza.it.softonic.com/download-tracker?th=1/.../HlRc27j8qAn6iS4Cakxk6TpI9TjQQHTKx5b5yZNHjk=

http://www.ranchsendgift.com/hzh0bCc1 JzOH2stcj5qQAs8LmBCOTUKnMUsnintX1gtGwde6q35guOvSCA8iRM6Nm E28PwK2IIkrIneRfLXIbQOzAef4G9iGSS9uYYHQH2tJgvK7qM3cyBfC8 bIWEkiJ3nfe3F6F3D3sHH1CDMJNxE3mXryCH vbon5gBmLkW7rMgv83RUgHOCWV6B8idHiJtILLfv0pN3bD_RTLssaTZhaPN3A==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

http://ftp.myihor.ru/72d3b7d/development-tools/.../posteriza.exe

http://www.ranchsendgift.com/VFWv0CGaKPP6JwpYdTyS3ctmixqUZyZU0MTAZ4iDETXkbyJWiyMk5gY5DX3lP1g73chfStPSY5zFZVgb6bqEqHzpjgKqbpGggL3_LLBZo4orS1T2LEkrUdOmWt7jHx8JdedvclOv_MoIrJIrVqQwsZn4IPzBD49aosmqESuyiyBnUQ24txY6BmtEwDmjoeB_vS8X0zykH0zsW3SNr24UVt7oSn4fjA==-GzEAAATcZDESM HB5AbFCQ45YP92kQKMJdgYO0sQavRyjSkfzci8A5XqBXRkKxoO

https://dw.uptodown.com/dwn/2DHmFQnzNGaNHQiWFpFjwlYtPEBTyDSwMAItjFZAmVhOlWhQFNEnsjxIbrcvLpy7yltkORvhAzwHH4k0P8_iRSNsFhrXj4ntckwAHVLe_aIJRMc2pVQEhoAyfumXdTSn/EePSMrSNQ8nEWXX9Z4pPsLklJOVuQgjM6AmVHFoA7MDDrmsIQM8CBrKMlAHF_VRjGZKx6bwQvNt5r3rwyW4fIZLkgJ82DfvdRH5WckjKZ7N6mgJp-y0-2ibjIXGBW_Cv/lSuJE7-VVTGoyd7B_CRGzmlef_gG46lpFUKxIuaAdExksa1nav3-3R3y5RipsX8XnJx-r15YjTR9L3fG5Sw_upyVnP15y1sCVxPDdi3z3yDtZjA73CKwJ_I-QAu55Md5/.../

Latest 30 of 50 download URLs

Scan POSTERIZA.exe - Powered by Reason Core Security