pp14.5_std_befigsd_13264.exe

Nuance Communications, Inc.

This is a setup program which is used to install the application. The file has been seen being downloaded from wgt.digitalriver.com and multiple other hosts.
Publisher:
Nuance Communications, Inc.  (signed and verified)

MD5:
d8aec46c591cb7eb26886c876349554e

SHA-1:
c3da7b26fada17d7245619d49c75279e40418ab1

SHA-256:
2442a000944ff6fc6381c2580e130b2a9af101b6db4435c3997d17cd4b39574a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 3:15:03 AM UTC  (today)

File size:
401 MB (420,440,392 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\pp14.5_std_befigsd_13264.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
5/10/2011 2:00:00 AM

Valid to:
7/5/2014 1:59:59 AM

Subject:
CN="Nuance Communications, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Nuance Communications, Inc.", S=Massachusetts, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
69A43EA5E38E03B6F842C589FC70D3CB

File PE Metadata
Compilation timestamp:
7/23/2007 7:28:54 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6291456:lAM5H+K6/6jFWotDxGFWR+MfubK3maiUmW2pgsRhB/aIgj2upkHqoXpvq9EZo1:yyu/6n5R+MnWaiBg0VzuiHqQvo+O

Entry address:
0x7698

Entry point:
E8, 19, 28, 00, 00, E9, 16, FE, FF, FF, 55, 8B, EC, 83, EC, 20, 53, 33, DB, 39, 5D, 10, 75, 20, E8, A4, 15, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, 35, 15, 00, 00, 83, C4, 14, 83, C8, FF, E9, 80, 00, 00, 00, 8B, 4D, 0C, 3B, CB, 56, 8B, 75, 08, 74, 21, 3B, F3, 75, 1D, E8, 75, 15, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, 06, 15, 00, 00, 83, C4, 14, 83, C8, FF, EB, 53, B8, FF, FF, FF, 7F, 3B, C8, 89, 45, E4, 77, 03, 89, 4D, E4, 57, FF, 75, 18, 8D, 45, E0, FF, 75, 14, C7, 45, EC...
 
[+]

Code size:
56 KB (57,344 bytes)

The file pp14.5_std_befigsd_13264.exe has been seen being distributed by the following 9 URLs.

http://wgt.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BC54E48410145F09A8D273C5554AF209500A3BF68B8D009894D124CCB255E8AB0FFAD60B56D6BAFAF65EAF92A44BC3AD2CF70D5E3C4121C8E867FFCE4342BB4778F5DC70B1E40C906/.../PP14.5_Std_BEFIGSD_13264.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BEACAFC317B3B1B1C8D273C5554AF2095E689B59CC9B53051BA197D5D05574E4DEB210D393D2F39FC925302FD5AC4BC1968358FC1EC85C1E2646D548C0188EB8897A693A7BBF30D56/.../PP14.5_Std_BEFIGSD_13264.exe

https://swvgdtt-gateway.amazon.com//gateway/stream/thin/win/29a08a8c-4b69-43d6-81e3-31b31d235796/PaperPort_14_Standard_Downloader/.../PaperPort_14_Standard_Downloader.exe

http://wgtot34.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BD6E4B9979C1583E479F4732C485751AF106974700A56B138203EEC2DEAF801BC6F684591BCB52B4E7C8A061F8D0FEEB24964FD3DE4A865AB71B4736050ABAC210A7DE0793B014624647C638FDE4F6D4D/.../PP14.5_Std_BEFIGSD_13264.exe

http://wgtot22.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7B0B2108EE30DE6B062B6D2983E0AD920DB9B9502DF51EBA5F939AE9FEAF666448839AF4710EDC3F15D368C203F564E9C7ADE4082334F73C44F1A834E62DA6C3DD8F5DC70B1E40C906/.../PP14.5_Std_BEFIGSD_13264.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BF464D881EBB301FA8D273C5554AF20958D6EEE11B2FAFFFD2276F465170800C4AAE6BE26495BC56A9D3BD66F77E2C176E945E738A680BDB65BB8F9870759B26497A693A7BBF30D56/.../PP14.5_Std_BEFIGSD_13264.exe

http://wgtot04.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7B3C35CDB57290E4E83067E995582108FF6C624174E87634A8CED04EF7E39E39DC6C6F3A64F1437809CFB80883D7D094C8B8147E988ED6A2D1D0900BCEC09F868D0451C577DBEF2976/.../PP14.5_Std_BEFIGSD_13264.exe