psftp.exe

PuTTY suite

Simon Tatham

This is a setup program which is used to install the application. The file has been seen being downloaded from faraday1.ucd.ie and multiple other hosts.
Publisher:
Simon Tatham

Product:
PuTTY suite

Description:
Command-line interactive SFTP client

Version:
Release 0.62

MD5:
e2bf4d76c71b912ce1258e90d352d646

SHA-1:
762ae6da6324015fa9dcc5b1a4bb381eea0d5a77

SHA-256:
0a98594b0052c52706d12fc52ad6bfd31b3362e7d8118e63aab585f8d2782d52

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 1:53:55 PM UTC  (today)

File size:
320 KB (327,680 bytes)

Product version:
Release 0.62

Copyright:
Copyright © 1997-2011 Simon Tatham.

Original file name:
PSFTP

File type:
Executable application (Win32 EXE)

Language:
English

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\tools\puttyportable\psftp.exe

File PE Metadata
Compilation timestamp:
12/10/2011 1:35:44 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
7.10

CTPH (ssdeep):
6144:QnXJNjpi71eZgKg5yMwt80L/fFDMCInJceIslE5a29xgrLarwV7rwKFtzH4rZX:QXJNjpu2gwNt80Ek5JxgrLj5IZ

Entry address:
0x30D90

Entry point:
6A, 18, 68, 28, B2, 44, 00, E8, 08, 15, 00, 00, BF, 94, 00, 00, 00, 8B, C7, E8, 68, F6, FF, FF, 89, 65, E8, 8B, F4, 89, 3E, 56, FF, 15, 84, A0, 43, 00, 8B, 4E, 10, 89, 0D, 30, 18, 45, 00, 8B, 46, 04, A3, 3C, 18, 45, 00, 8B, 56, 08, 89, 15, 40, 18, 45, 00, 8B, 76, 0C, 81, E6, FF, 7F, 00, 00, 89, 35, 34, 18, 45, 00, 83, F9, 02, 74, 0C, 81, CE, 00, 80, 00, 00, 89, 35, 34, 18, 45, 00, C1, E0, 08, 03, C2, A3, 38, 18, 45, 00, 33, FF, 57, FF, 15, 34, A1, 43, 00, 66, 81, 38, 4D, 5A, 75, 1F, 8B, 48, 3C, 03, C8, 81...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v7.0

Code size:
228 KB (233,472 bytes)

The file psftp.exe has been discovered within the following programs.

DropIt (v4.6)  by Lupo PenSuite Team
Publisher's description - “DropIt is a simple drop target (a floating image on your desktop) that you can drop files onto to quickly position them in folders of your choice.”
sourceforge.net/projects/dropit
8% remove it
PuTTY version 0.60  by Simon Tatham
PuTTY is a free and open-source terminal emulator, serial console and network file transfer application. It supports several network protocols, including SCP, SSH, Telnet and rlogin.
www.chiark.greenend.org.uk/~sgtatham/putty
About 7% of users remove it
RoboTask  by NeoWise Software
RoboTask can automate any series of tasks you do on your computer.
www.robotask.com
11% remove it
SCM Environment  by DST Systems, Inc.
www.dstsystems.com
About 1% of users remove it
 
Powered by Should I Remove It?

The file psftp.exe has been seen being distributed by the following 3 URLs.

Scan psftp.exe - Powered by Reason Core Security