sdt325.exe

WebDownload Application

Stanford University

This is a self-extracting archive and installer. The file has been seen being downloaded from web.stanford.edu.
Publisher:
Stanford University  (signed and verified)

Product:
WebDownload Application

Description:
Stanford University SelfExtracting Installer

Version:
2.0.4.0

MD5:
a7a475b15ede30ea73560f06c53096e5

SHA-1:
70fb2b1f19470d40c2623ebddcd1fc1d7f8d29ea

SHA-256:
c7ec5138a19e63cbf5586a26bc80ee7ec3bcd1970744d1dc2c99b7f791fa91dd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/25/2024 6:54:23 PM UTC  (today)

File size:
6 MB (6,270,408 bytes)

Product version:
3.2.5.0

Copyright:
Copyright (C) 2007-2013 Stanford University

Original file name:
Susei.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\sdt325.exe

Digital Signature
Authority:
Internet2

Valid from:
3/22/2016 5:00:00 PM

Valid to:
3/23/2019 4:59:59 PM

Subject:
CN=Stanford University, O=Stanford University, STREET=450 Serra Mall, L=Stanford, S=CA, PostalCode=94305, C=US

Issuer:
CN=InCommon RSA Code Signing CA, OU=InCommon, O=Internet2, L=Ann Arbor, S=MI, C=US

Serial number:
00BC29E735BBCE75AF2312954883F53812

File PE Metadata
Compilation timestamp:
1/26/2016 12:24:51 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

Entry address:
0x178A0

Entry point:
E8, AC, 05, 00, 00, E9, 4E, FE, FF, FF, E9, 85, 8A, 00, 00, 55, 8B, EC, 83, 61, 04, 00, 83, 61, 08, 00, 8B, 45, 08, 89, 41, 04, 8B, C1, C7, 01, E0, 00, 46, 00, 5D, C2, 04, 00, 55, 8B, EC, 51, 56, FF, 75, 08, 8B, F1, 89, 75, FC, E8, 60, 00, 00, 00, C7, 06, E0, 00, 46, 00, 8B, C6, 5E, 8B, E5, 5D, C2, 04, 00, 83, 61, 04, 00, 8B, C1, 83, 61, 08, 00, C7, 41, 04, E8, 00, 46, 00, C7, 01, E0, 00, 46, 00, C3, 55, 8B, EC, 51, 56, FF, 75, 08, 8B, F1, 89, 75, FC, E8, 27, 00, 00, 00, C7, 06, FC, 00, 46, 00, 8B, C6, 5E...
 
[+]

Entropy:
7.8429  (probably packed)

Code size:
370.5 KB (379,392 bytes)

The file sdt325.exe has been seen being distributed by the following URL.

http://web.stanford.edu/dept/its/support/ess/pc/.../SDT325.exe

Scan sdt325.exe - Powered by Reason Core Security