putty.exe

PuTTY suite

Simon Tatham

This is installed with multiple programs including PuTTY release 0.67. The file has been seen being downloaded from rockerz.hopto.org and multiple other hosts.
Publisher:
Simon Tatham  (signed and verified)

Product:
PuTTY suite

Description:
SSH, Telnet and Rlogin client

Version:
Release 0.67

MD5:
ba78410702f0cc8453da1afbb2a8b670

SHA-1:
1083245ac66d4261f526d18d4eac79a7dbd72989

SHA-256:
9f9e74241d59eccfe7040bfdcbbceacb374eda397cc53a4197b59e4f6f380a91

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 9:40:01 AM UTC  (today)

File size:
518.9 KB (531,368 bytes)

Product version:
Release 0.67

Copyright:
Copyright © 1997-2016 Simon Tatham.

Original file name:
PuTTY

File type:
Executable application (Win32 EXE)

Language:
English (United Kingdom)

Common path:
C:\users\{user}\downloads\putty.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
12/10/2015 5:30:00 AM

Valid to:
12/2/2018 5:29:59 AM

Subject:
CN=Simon Tatham, O=Simon Tatham, L=Cambridge, S=Cambridgeshire, C=GB

Issuer:
CN=COMODO SHA-256 Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
6CD282A2D9A2C158505B178D59518B7B

File PE Metadata
Compilation timestamp:
3/1/2016 1:34:07 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
12288:eFf6eiet+e/tvVamNW9ALZ67kUMpaAZ3t3P9e6haz:If6eiU+e/t49AdU80At9Pc6Mz

Entry address:
0x550F0

Entry point:
6A, 60, 68, 08, 81, 47, 00, E8, 08, 21, 00, 00, BF, 94, 00, 00, 00, 8B, C7, E8, B8, FA, FF, FF, 89, 65, E8, 8B, F4, 89, 3E, 56, FF, 15, DC, D2, 45, 00, 8B, 4E, 10, 89, 0D, 4C, F1, 47, 00, 8B, 46, 04, A3, 58, F1, 47, 00, 8B, 56, 08, 89, 15, 5C, F1, 47, 00, 8B, 76, 0C, 81, E6, FF, 7F, 00, 00, 89, 35, 50, F1, 47, 00, 83, F9, 02, 74, 0C, 81, CE, 00, 80, 00, 00, 89, 35, 50, F1, 47, 00, C1, E0, 08, 03, C2, A3, 54, F1, 47, 00, 33, F6, 56, 8B, 3D, D8, D2, 45, 00, FF, D7, 66, 81, 38, 4D, 5A, 75, 1F, 8B, 48, 3C, 03...
 
[+]

Entropy:
6.7060

Developed / compiled with:
Microsoft Visual C++ v7.0

Code size:
368 KB (376,832 bytes)

The file putty.exe has been discovered within the following programs.

CentraStage  by CentraStage Limited
CentraStage Community Agent (cagservice.exe), belongs to Panda Cloud Systems Management and part of Panda’s Security/Protection Suite.
www.centrastage.com
21% remove it
MainStay Solutions  by CentraStage Limited
About 3% of users remove it
PuTTY release 0.67  by Simon Tatham
www.chiark.greenend.org.uk/~sgtatham/putty
About 6% of users remove it
 
Powered by Should I Remove It?

The file putty.exe has been seen being distributed by the following 50 URLs.

http://rockerz.hopto.org/putty.exe

https://doc-0o-2k-docs.googleusercontent.com/docs/securesc/etpvcqb24g2553f6v53i3bb6es9t4nl6/4ubfn9u2qfk3ah8dtdbqmo90u407nlht/1475244000000/00497115766307827518/.../0B_-ka45hAbmtMDBabGR5YWpxSFk?h=05963937066880996836&e=download

http://putty.en.softonic.com/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPemSpzydROONygDLMhXLMTlkesa85E2lr2EB4Yvr7k9U7hb30knJFkvy6FeVcQzHi0mMVSoQuvZcjWZ9TnPMybo7M8JXVELZ6KgbqSLktODZq4N4chzW/.../6AeA4=

https://download.heise.de/software/9e601a225430d222f72985434264599e/56eaa83a/.../putty.exe

http://lb.cdn.m6web.fr/d/c/a/2742ef094b66d72eaa30d5d3df42a8c6/586e674f/soft/.../putty_0-67_fr_10874.exe

http://www.lo4d.com/get-file/putty/.../

http://10.10.10.4/data/aplikasi/.../putty.exe

http://www.uprp.edu/images/.../putty.exe

http://lb.cdn.m6web.fr/d/c/a/a09e0055df840c19415ffb518e44e945/58346b99/soft/.../putty_0-67_fr_10874.exe

http://migre.me/kebJp

http://www.lo4d.com/get-file/putty/.../

http://compus.uom.gr/INF140/document/Ergasthria/.../putty.exe

http://www.towerbitscenter.com/_sdk4o2l4k8_7a_dXuo4je2i5FV5sxQ1X317A99HBGM_x5_8g7OK7H8QGQLxOG8Wk9pHNFcoc41jYDzrx_qY SLKTH4 aofsMmtg2iyJwySTxpfpZ3FPVBpDIiW9M8tPxiemSHNJ0d6DGN8GsNtxPKj7pOKPpQLmAM2Xwxex7MDG6LJ7IY8_U4 exfBYEfSsfpw9OMYI87tkHVgGXxahHSvdTbiSrgNH1KJqzA2ReWb6w ZMvwHzT4SntOkp4A9aMxptAboU5mZs vyvuGzWkSam5Wpcrohnu5Evvn6sOAD00JNYSpShw3ubqnCGcHYsZ4q93x8FO7oYD9npL5tTkvJpVGCt rSBs4uMbhgVt_m2pueSdYEidq2FzjfPSphcYjmZIKRJddWXgyFCQyabPAnFFGe6Nyt1jbwe2MbkmAoP iGhLW_SIsHNwzgkl96aKk7LSczMxICPflStpXjDo0hQeen97vPbw5Et9K5fjOCwDiRRh2eAtp_9r4SwKROhPsm0xL4O-GzcAAETdFtvWxFYfhgoKghNuETbgwCmSXmC4A0oDceO4C1GLOfhPc_CxuK_9GFRmLVIoBQ==-e

http://lb.cdn.m6web.fr/d/c/a/46baacf209e77f82e5a9a76470a3c502/5806b0f1/soft/.../putty_0-67_fr_10874.exe

http://high.software.dn.naver.com/f4b6ad4977ab8009690176bd4ebbf8c8/.../putty.exe

ftp://192.168.0.103:3721/.../putty.exe

https://winscp.net/.../putty.exe

http://indir.gezginler.net/i/5471/.../

https://jam4.sapjam.com/profile/4IFUgUGNbQjjZFEbSVl9ym/documents/.../download

http://10.180.80.21/.../download_file.php?m=1b1e3191863edb0717fed0897611da9f7749ad886c05762cdaccee2b67f4bb41

http://downloadbureau.com/Bundle/get.php?name=putty.exe&url=https://the.earth.li/~sgtatham/putty/latest/.../putty.exe

http://lb.cdn.m6web.fr/d/c/a/aaa9a6e4ab4cb76c1b20382681654bb1/583c950e/soft/.../putty_0-67_fr_10874.exe

http://roclms.iwcc.edu/mod/.../view.php?id=664740&redirect=1

http://qpdownload.com/download.php?name=putty

http://www.lo4d.com/get-file/putty/.../

http://mirrors.clouvider.net/putty/0.67/.../putty.exe

http://the.earth.li/171E92C18EEE40A29D1749C505091DFC_SOPHOS_WARN_PROCEEDED_FLAG

http://lb.cdn.m6web.fr/d/c/a/b706a1bcd7e86b13d583d54907f1d13b/57dcf0b5/soft/.../putty_0-67_fr_10874.exe

http://putty.th.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6GNop-nkZQ=

http://www.towerbitscenter.com/ptxtXrvMxFs17MRO3ZTW9mQcr1KD4gd65QmFi4TQNR5T6qD83C29gvFWsg2xNIlMpgcROMheOD5jmxs7do1MBznZdVQHtlVrGEJmvIdFFwZAo901q3CI8REHRY9NbF_AgTV 4KRcD1yLIvnYgaeNfx8SDsnjQnm3EoTLYqpvU3QEuJT2oJY5rcxLLkzTINueC1xtyZ91aH1bWmg hWxu7YoRgDUijA==-GzcAAETdFtvWxFYfhgoKghNuETbgwCmSXmC4A0oDceO4C1GLOfhPc_CxuK_9GFRmLVIoBQ==

Latest 30 of 101 download URLs

Scan putty.exe - Powered by Reason Core Security