Skype.exe

Skype

Skype Technologies SA

This is a setup program which is used to install the application. It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘Skype’. The file has been seen being downloaded from download.chat4o.com.
Publisher:
Skype Technologies S.A.  (signed by Skype Technologies SA)

Product:
Skype

Version:
3.8.0.115

MD5:
4bbe956b0711a2f4aa6706ffe871289e

SHA-1:
ba1f883ff5caa4a452e1d5b7a5877c0c60369e9c

SHA-256:
0ae901245e33efdbd8da1cb8145e407864e7697c6eb19ce21b4160e752f2673c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 3:27:12 PM UTC  (today)

File size:
21 MB (22,058,792 bytes)

Product version:
3.8

Copyright:
(c) Skype Technologies S.A.

Original file name:
Skype.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\skype\phone\skype.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
5/15/2007 5:00:00 PM

Valid to:
5/21/2008 4:59:59 PM

Subject:
CN=Skype Technologies SA, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Skype Technologies SA, L=Luxembourg, S=Luxembourg, C=LU

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
38F706F135D2B1D5CC8F32D4E358E274

File PE Metadata
Compilation timestamp:
6/19/1992 3:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:xIYQyoKjznB8X0ty3ZaTUtRIbMZlMAiLDtgcFov0UqYbjbk:xiy7naEyHtIXBnqv0U7jb

Entry address:
0x189024

Entry point:
EB, 57, BA, 04, 77, 77, 77, 52, B9, C0, 90, 58, 00, B8, 45, 90, 58, 00, 29, C1, BB, 03, 77, 77, 77, 30, 1C, 01, C1, C3, 03, E2, F8, 5A, 31, C9, BB, 41, 40, 39, 38, 81, FA, 24, 90, 58, 00, 75, 05, BA, E4, 92, 58, 00, 52, 68, A0, 8E, 9E, 8B, 52, 68, 31, A2, 31, 01, FF, 32, E8, 63, FF, FF, FF, 5A, 89, 02, 81, FA, 05, 77, 77, 77, 74, 05, 83, C2, 04, EB, D0, E8, EE, 00, 00, 00, 84, C0, 74, 1C, 6A, 00, FF, 35, 54, 3B, E5, 00, FF, 35, 58, 3B, E5, 00, 6A, 00, E8, 15, 00, E8, FF, 6A, 01, E8, EE, F2, E7, FF, BA, 01...
 
[+]

Code size:
10.3 MB (10,786,304 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Skype

Command:
"C:\Program Files\skype\phone\skype.exe" \nosplash \minimized


The file Skype.exe has been seen being distributed by the following URL.