» spm17intwr.exe
Overview
Analysis
File Details
Downloads (19)

spm17intwr.exe

Steganos Password Manager 17

Steganos Software GmbH

This is a setup program which is used to install the application. The file has been seen being downloaded from www.softonic.com and multiple other hosts.

File name:

spm17intwr.exe

Publisher:

Steganos Software GmbH (signed and verified)

Product:

Steganos Password Manager 17

Version:

17.0.0 Rev 11424

MD5:

3959780addcb68ab66541a56f472a18f

SHA-1:

9bbd98be3d233f00c77c64774fc317ff11466238

SHA-256:

532a8f8c1485a21cd907896b00afb61d2bd468a280ac0414a9524857d9b5f0cc

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/6/2024 5:01:24 AM UTC (today)

File size:

17.4 MB (18,233,032 bytes)

Product version:

17.0.0 Rev 11424

Original file name:

setupwrapper.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\spm17intwr.exe

Digital Signature

Signed by:

Steganos Software GmbH

Authority:

GlobalSign nv-sa

Valid from:

9/10/2014 8:10:01 AM

Valid to:

11/3/2017 10:55:47 AM

Subject:

E=certificates@steganos.com, CN=Steganos Software GmbH, O=Steganos Software GmbH, L=Berlin, S=Berlin, C=DE

Issuer:

CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:

112127389AB528A3A8EC995621C824069818

File PE Metadata

Compilation timestamp:

8/25/2015 4:15:22 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

393216:ZHDU41AmCzVXPnFxDR6bF6Z0yrhznfx6oHKda5ScCAYvHzicb:Zj0tPnTC6RhLfUoHKda59CAiTT

Entry address:

0x10D66

Entry point:

E8, 3F, 8B, 00, 00, E9, A4, FE, FF, FF, 6A, 0C, 68, D0, 86, 42, 00, E8, A0, 44, 00, 00, 8B, 75, 08, 85, F6, 74, 75, 83, 3D, C8, C5, 42, 00, 03, 75, 43, 6A, 04, E8, 29, 8D, 00, 00, 59, 83, 65, FC, 00, 56, E8, 51, 8D, 00, 00, 59, 89, 45, E4, 85, C0, 74, 09, 56, 50, E8, 72, 8D, 00, 00, 59, 59, C7, 45, FC, FE, FF, FF, FF, E8, 0B, 00, 00, 00, 83, 7D, E4, 00, 75, 37, FF, 75, 08, EB, 0A, 6A, 04, E8, 15, 8C, 00, 00, 59, C3, 56, 6A, 00, FF, 35, F4, C2, 42, 00, FF, 15, 74, 40, 42, 00, 85, C0, 75, 16, E8, 2E, 28, 00... 
[+]

Code size:

139.5 KB (142,848 bytes)

The file spm17intwr.exe has been seen being distributed by the following 19 URLs.

http://www.softonic.com/sads/tracker.php?ev=c&co=CO&sid=7a78205fb71dbb2aba699abb0ed2c1a6&upv=1b87767e222807eb4f566032c73c8e1b&z=results&sk=0&abp=1&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B767D843BC4E3A7B8622EFD54C896C6C05BC1AD09108930213CCF5886FBEB2AE8836C0E7E066F46FE194DA995C9D567A57BF658D91379086D58D298D06784098054D3154B23F73DA52E1C53BEF82A3E16E5C7290AEE3F6C4921DD88122DD44EC552EF69320581639704B7605BD03A198FB&h=3F352BBB4FFEE35EF67D0E240374EF678F4DD182FFDB613DB56F29B0270BF07D&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=AR&sid=ba46eeb356ab1e17ae915840fe28f2af&upv=f252b0b60a970fe4c8fd5667806bac00&z=results&sk=0&abp=1&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B73C5BE6E07E2BFD237AB83B640C8B6B72099516CD5F125E682E07345392C045BC0C9BCB956C9096D0F2868DEFBA34EE7A6D7690E9D13B9354A4671B0F54B5302EFCCD0C04DC558D967BB4ABD332D789B3C5AF7D90990A3B21D578B4F149521C5B8180F473BB2BAE350B0EDBB0451D42D0&h=D49E6FAD3949968BFC253C02882D46D0F4A31D067632D0FE2008CCD059FE6309&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=AR&sid=1f84436b30fff9f5e85e49ec79eb13a8&upv=cf27d327e63af8790ae832464968bf15&z=results&sk=0&abp=1&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B7FC92F7D99EAD2B1BE29918F498969C4506291BF15EEDB25D21BEA9F79E3669299C57E7443D37B27DE7A6481D7EABE77F3CFBF7012EA94B3930FC8E94FC718F0D2D412BC0BD9E4648F215F5567CE24ED0EA486F95D4A06800D5550F84AF7585F9596AD0D16F6BCE9A636E3C3CF7DF78CB&h=F4CC9B78CD795D91288931FBEB410FE32A2BA3B7846156DF84127B26D6C36A5E&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=ES&upv=46b08cb25f81a7f1eec553fcbc68dfd9&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B74F0A3D0FB5BD5E52570519598CEBE637D5A895EF7E357C32C78501A105B6D2460D78A5E1B49EF701782AC7699A72E3B877227C69A516A7F8C1CA12CAA9D3927879E7A9A9EC07864327DCF392E467CA37D333240E417B8D7BCB9FA7F8DE73A862D2B8E512254233186F5A40D539B580D8&h=4F45D313F48483AA96D5D8E8A20376324B0F8BA2A9D0555B8689B1B2B193EA30&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=PE&sid=d26320053ee962030e7fcfc8ed640ab1&upv=3d4759913bac7ced444b5977ed13a2c2&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B767D843BC4E3A7B8622EFD54C896C6C05D1113274F6D992463A98C02B9CC5511006BA3C4158E5B6344258B6287F9D84107CF89CA809C833C50B9415C261026E64B985954703F2F3377A7219FD2EA9B417D8622F2A23F2E7A643217F31AE0C6DAFF87053701A1269148E20847F31CC4C5A&h=66E5750101F79A50A02372E96FB8B069EEE5B0DC4B765714778789DCBE57E229&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=MX&sid=2cd7f75bb13d16b33ce09fa0a3b9108d&upv=bfb538bac425e3200cab9181344f8f47&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B7C3F0D5528B5611B0A3C6922D9879817D2AA758EB6D9C50773B77F98902999F0CEBECA1BB8F3E5BFFD30AA52211742811336D7A8C651D4CED6F44F0EA1EB911966BF16968061371EB882294A9FB72C25547636A3FFFB685D8885E28F4EEA1C26E95BCFB0C80536E85A1CE9A83508ED99A&h=8767A3284136AA1DA3A9932C1B34EB672617C337E5905AF87C03F53510C8D91A&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=MX&sid=2abffed7314af398c851ac93da2fefe1&upv=34d6ca959dab254dced0804851308057&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B700AEA65204AFDBF74E43792552227AADE3404915A943F359652379D5EA8162C689B3602D8ECE51AD49144925F743D70EF1CBAB3E2FA50BAF8A5C0D81A6848E9F7C820CA886106307BB0465480E421331FA9BD5B12496AF961D1C7CDB93ED9F31F87C58876B8E68D664D8037EAB27E109&h=9CA5672F850BFD23CB4BCA614D44206F706223B756C2E068908D9502209FF547&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=AR&sid=e7f129705b5bb8cc03eaa1ca501e5cc3&upv=8befbfbdb52ec37c03dc20be02b0b2c7&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B7C3F0D5528B5611B0A3C6922D9879817D647AB0115FAECC1F55966FF978B00817515F91FB6A8F170A0637145E98555FB658B84980934FAA03E29D0293B1A959A3CA35C42F9110F797E124BB8EB4058A867C6CF5074D878ECA00F397F98CC23F4CA8507BCDD6BC3DEB4E33A979B2675476&h=4BDD831284508B5273695AD5AAE6B069C3CCFF5CE8CB0F74D84C1C8477EF33EF&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=AR&sid=bf8a23fc4295f84c3edd891b683b3883&upv=2fd2907cd4cd8647fe693b28d0a53620&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B7C3F0D5528B5611B0A3C6922D9879817D647AB0115FAECC1F55966FF978B0081761CBF41FA1E8104DB12B47665F0D153DB7DC9CF9898FF34EC013682A22CCD325FA9F7DA4DBA01D5EF09B93F3A6E5AE8E25AF08DE9F42B346EBAC99F5F3DE140EB915544EFC17AE82F30A184434FEC4FD&h=0EA07EDD609730634718C10C5CCE8D1E038F3B0F6083CF37DCCE1A884B99E4EE&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=ES&sid=b9e4a1eff5e325684994a225b20e19cf&upv=ecc3f0ed6ccaa092398bfb6ae9cf63e5&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B77F7AAA5E0FFDA38E64E4E3974411D8D5B4E38DBC80F5278590E04C9B2B5E2E0B898B9D0246ECE4F74332BBF7575B1865C93760F1C44E67ADA3A9F214BAC9DA595492255C360198C7AED0C00FD7ED2090FFBFAD861BB9186EBACCCB68F49C78FE6985989FD0F556566229D2960F89C594&h=670D98C0A18202D2CB403BCB69683B4BA3F34046F5F201B3BC5D0646D32A2F3F&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=AR&sid=65fbbf0d166444ef6d3dda6c1be190e5&upv=ef877f91319258f258a4e894a966a825&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B7C3F0D5528B5611B0A3C6922D9879817D647AB0115FAECC1F55966FF978B00817515F91FB6A8F170A0637145E98555FB63C9D1A902EF58492396495FB4C4C1B164C181A45AD5FD6C33F44FD4E670A088609D3159899F99C69D1CD1B85B10785106360B18DC7A07E5A845B5E59C5E49633&h=029071ED0E2E2BDFB220549F9496D97E81F9B1A6DED29FAEA02E2B6B1E2C8067&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=CL&sid=2924af705f5e2d608637130c6e7670bd&upv=cbe6a74c65fedbe449893b8cfce6b8c8&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B7333C0FD38C99F5DE37282F1C5351BBE9C7E8B0F4C6D886A37A8B786FE298399E4CE091600FB479987B98216020F37FA049438640B1C98729ACE7DAAFFD4BCAEB06E0004716E3EEA419E145DCC5042254E80727F0DD5DE078DF366716781CB68B164BD332FC7D7F67EAC682B01DA4DA3A&h=D9BC57CA347034D33EC91A4470EF840F9D980A4ADB4DC2F0DD74896A7558E4FF&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=PE&sid=c0f389d1ff055189afcc17e5a6d79d74&upv=b5b50e9a0ad785aca545c20fb2836107&z=download-cpd&sk=550&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011A93A1331B18AAFFAA4E23BE1E9DB475E394AB7DE421F9D8993E0C744CC3517C22A7F22201C219837A556B6857D8C48C577F41D136CDEEDB9B57BCEB44DE59C7EB62707139F85CEE0AFA94FCB9AB8E2B3710241DDD47EE9140D59FA894133133FB9078E316B40715E1E7F1302C1DC8239269285671F8ED3222874B9AB55EE11D8&h=6264F89DCBC703BDAB348D637833E6475B3929CA7860EC54021A282C6869FB3A&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://steganos-password-manager.softonic.com.br/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPbOBb1tJINokZq5u/.../EGWNRKLx9R50AtQlXyroFv38uhiiDelJcwVdIak6XeZRNbZV9L7ehDgDiHGL ERpIGqE9mH69KzQHJmDD9VlWIg8Rg==

http://steganos-password-manager.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWuX/hXxY0VRhb/LHglOdKZBgo0W4ZzkwUTaSqs0gdlQTUFzdwHufzTQ3zPKLfs//Tb M5Cl92LdJlWM2GsJGoia3hDs1yZu9pMZy78qqqBonnjslJouEP8uoRu9H7/S00EKq5YgdF4mcoPbzwWy/.../BJp7A==

http://www.softonic.com/sads/tracker.php?ev=c&co=CO&sid=569a1eaea96e693ee7d7a9f1158a36ad&upv=e3801df894f8b2e8d943bff21853b023&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B75853C525896F17D63D5A2674A2453F28653D038542DF586B566DD30F50D60F63FFFE7219F17BBFBC700E0F34F421623C9737F61C6509EBFCF9E23E6828B0973F196DD485B61C07144FB74BE639BBFCCB4583664FA228D4A83D06536C3ECD947ECE04B6CD7439410A63FA35B32A1A20536A21649186064A213C53B6AF8C20DF4F&h=9486C33A8EA8F1870B44DE8DF2E6B60C85F4044A61147A4F4B1A6897F99E2BB9&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=CO&sid=5c1cc601cd7ae3af95d722661fc3f890&upv=cb62cbafb1b32b33cfa77ebc78a3b7e5&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011ABD3B7493D72404B710D801189B441B74F0A3D0FB5BD5E52570519598CEBE637912D3B8B125F6E5E1ADBBF826A38CBF931DE816D1788E3408AA7CEBCE9EBBF8E9C39FDBCB1C1927CB6BC414B2E03CBA011717B03572323303DEF93FD98289AAC7B60708014BFCEC3C7E5ED9AA5574A6294CC56D35554FF7D4855EF3D603B18B9&h=BFECDA22D6A56908F0F074B3FC1008F9A4502C4306A023624C5C69D143275A18&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=CL&sid=510a7919134e7fe2fd714e685b7f7956&upv=17ba82c7a3ecd4e919a235927f4e0283&z=download-cpd&sk=554&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA4203D8EC137E1792B4D6DF2EBF0B2011A93A1331B18AAFFAA4E23BE1E9DB475E394AB7DE421F9D8993E0C744CC3517C22A7F22201C219837A556B6857D8C48C579A0C70D9E9477293A0D58D64491CCC21198219C77A2F59E62AFBF8991AF97D98CF1D883F146390AFA14B92F85C5406EC0FB1B6315BD7AA00206147FAB42EEB5886A45B8AEEA1CF268CBE018FA34EC55&h=CA4F0C88C03DA409932B2931E3B55A8C6EF1F11F5FBA9959B7E2F74183B2AB60&directdownload=1&f=83169&d=http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

http://www.segurisoft.es/software/Dwl_portalsa/.../spm17intwr.exe

Scan spm17intwr.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.