starterbackgroundchanger_v08.exe

Installation de StarterBackgroundChanger

This is a setup and installation application. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
Product:
Installation de StarterBackgroundChanger

Version:
2, 0, 0, 35

MD5:
e451d6bf78de1647e2b5d215f8820e56

SHA-1:
3d58e419e9822a2105dd8a949d78828b7b5f3f81

SHA-256:
f2b16d0f60d75c5789909653e9e9597075e55cdea76c39f754213f2a0942f16f

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/28/2024 10:22:52 AM UTC  (today)

Scan engine
Detection
Engine version

NANO AntiVirus
Trojan.Win32.Winlock.cqljey
0.28.0.59921

File size:
733.2 KB (750,816 bytes)

Product version:
2, 0, 0, 35

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
11/8/2009 4:32:11 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:L1zSZHibKwIUwfVHGHJp0l/mQTOtK3lzOlsmm/urdf9u+dqudQrzkIWVLZb7ZH3d:L1EimzUwfVmHDQTT1wsmmmrdf93qUQrg

Entry address:
0x13DBC

Entry point:
55, 8B, EC, 6A, FF, 68, 98, 87, 41, 00, 68, E0, 6A, 41, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, A4, 80, 41, 00, 33, D2, 8A, D4, 89, 15, E0, F2, 41, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, DC, F2, 41, 00, C1, E1, 08, 03, CA, 89, 0D, D8, F2, 41, 00, C1, E8, 10, A3, D4, F2, 41, 00, 33, F6, 56, E8, BB, 03, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, FD, 2A, 00, 00, FF, 15, 10, 81, 41, 00, A3, EC, F7, 41, 00, E8...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
92 KB (94,208 bytes)

The file starterbackgroundchanger_v08.exe has been seen being distributed by the following 50 URLs.

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_fr&type=PROGRAM&Expires=1485430442&Signature=IYDIZloFinab3j55Fj~juK9VZ9b7YJsitVWozlrzWVIYshxqv~RZZx9816tAh65Zo0lcOnIUMV71I7D7cX4778SPitvzB1yyit~2-LF3VjPtXGAjuNqtyV0T9jLxETS2JimqnkMzq~Ebl7hayzUALHFVH8Ech7SmZh0SIPyM3dM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

https://dl.boxcloud.com/bc/1/192099b226a33d3931f469d9c20784a5/2Of-pgQHiFlfW6KldVyHAxtUIEW0l7HoOpi14-VGcxcSnn2CtobCO1UjJZLI58w_oCTNcPMKbUR_gn-ncDkAbw,,/.../

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1485352798&Signature=BuQFZ82ZD8syxJeaTcuMWbh8XNY3UrJWTxdlPWa9qmJMUnMgBK8zSTYRpKuQILVxM-U5iup-rBUraCUdtKDNqnk8tFMjbFhmiBbBiLSq6c8KDGBoNln0aaq3lxipc9taRV50n6Yc3VLdX~JXxh-MY-1lGHxVG9Agl3-6BizSiA0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1481409169&Signature=X~cuklcKKIHVt1pmT8nk-PSNopmUm3~v5tWW7cP~3GsZH2IU0bfsc1UjSriWwDHVj0n~FsnIa0t~XJDwjinT1LC1EoFJrKIsftBXPTf4XNVrH9-bOwvhg23K-aLme2sx6EkcvHHjUCYEyruBryxPuU8bKF0FfCuTpVlOLzVCwD8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1480057360&Signature=V-f94XT-NWOgIIywZN7QCpvuP98qXNKK-BZoNeccg~BT2YUaZb~MRiqOzrIrqaV4qNe6ZOb8TFf1~e0M1JxmTmPIidLLjhtZTVUFdMDtBfH6QZ9gDZfwVHteolh8If35GHeAuaQhJACbiroxoaFh6fLrrUV3bAHMarVz4T2Ez8I_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://dw10.uptodown.com/dwn/9ySiW8WTVZyczko26vBAZTC8-HA4YduR29iIfz40EldOaFjDJ08aOjtt1tHNURq-5IVMIhxuL01LfoaKS8BNATEUa3LnF5VegXPNIrq-kjpHBpxV3Fx0119sQFIEVnD8/py8wI2WJaJO5sLjPXfSQcOjGlUhOAe4usl8FSPpSiP4ToJ_8zv2uniEYLq6mi3xGCt6YS53TLc2W01ZoGBJYe7y2l7WohUpE6gIVbMj9-O660tb13bCOjnEnGIofBhp8/MBs2srRQyvznYf6kww5TjoehFM0jvHhbOieQiuw9RJu_-wTE0DLqokG21BbIFcZe6dXECFTXhFlPnguxxl0QNOxpaNGchbbp-g63jiIyO4CkD84mBgHU53HgNlewk8NM/.../starter-background-changer-0.8.0.0-beta.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1448277064&Signature=Ye9FHtOcMdoyXiAiNpWhuVgUqekVMyuRGZ242aGIDem-XDwWhv~DOuVNVsV5SCZM9MoBwPk-AW3wojcNINLQLdwlhwaSNlHlMHG-ehNFdMOhuKLX6uGtL5XAhTDIGvyLEbHMYc-lXo-Ya1iyH4ojW8uBmUlqZV8jbIzSNHW-Kww_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1438263264&Signature=UY0EgPoa3eDa1NKA9p5oYVDESW5j3WRmVXoy-xXFNYnsv9YJsbJyBYV6bMBL~lp6ioffjSCLUUfp5o-6lEYrDrl0idAhSogCF9DvfU~fXQOcttAq9-~TVKcthTDi8Sl3mlp1Pi0H84NjMnOcUyJuXBSI41cD9qlRfaUM~Z1mPGY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_fr&type=PROGRAM&Expires=1480662974&Signature=FLgyU9oRRpDkL1ZB3V8X7GMkFHriUCuJF~bpI-OnDvvRfgNeAoypalMDo7wuBH848GrO8frrCCrgjYu2wb10nPcislvKHCWLLS9hxncSW92YTlWeXm02cJ-zeOHizKEvMDUlI0zVKhgWH4TZzgwl6y5-O5ab6ffa~Aw~C7ZK0C0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1481946174&Signature=GqCEz-YCBamhan0HRHLpc7IC9t9teAS59Q7nuI6xOdD2eo8v90jobUkaMf7bYODT29H27S4IRT3OMzt-6NJJ7ROIq8aWiytt1dwkbd-7-12lzS2gjmZQZMJX-P5eb4z7T68ZMT4BKzYSnxuRsvJymW56~1MmIWyZPb0Py0mJ8sI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1476535141&Signature=apJxEz3Yap7c098BLXIwdi68PmzY~ihhZfmYld0fc-cwEdB3-k2Z2-jo7DLsW~wAveqq9wx26yWxQPX-zzkYMg~2LYi7MwqMhUd303Dr47t9z8aIPYGEgv3OKrHXRWsMrbXA5LVywqSd8htYp~-dsw4ZcrAG~LAYWC0x01fCPtQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1470811825&Signature=JGjPNG1P3BAGQHN6KmTyjt2ZWnPY1AV4B7yXSwG757wjk4lLTOIvTcvy4uef3kvQl-DTquq3EkZP-DVi9kMdAx8DbXx8Ymta9o5MQoyzhFu0rnTUc7MOWLPc00GAhenqVkUucWN5a0fs2H3FY5hVwYH-CDxhmFCeU~0MaMylnN8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_pl&type=PROGRAM&Expires=1482980854&Signature=aCVmaopJ3Z1tc9GcMyxCEdmb~mRRU7t2qs6S3w2GLoyOiJ2cTwvTjMD4sXKKSKZ21ycvNIrlJGIYDUROZMLTqB1irpmL6Gf-uw4QabaBKZIajG2F3s8xcd-ezJQR3ZMMCnUZ-NzvgLzNM5gs-ipqZO63nBrkI4ENBTTjVSDCXC0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1479644222&Signature=RdyUe3ZM7hb1s6MWfAw2BSqvd~zCe299FKYHAuHggtdKNiVZoEIgZ-gekhn7Oh0-qp7WNJj09oGnysQTz-lxOS7xUiUST1AJbkwNE5tg-GNBMJmnVcDrUSSVqVaabo4OLph3nH5DBDgylDbASmMnJOlMtgNqFJb3qxqYgvkm5jw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1467959554&Signature=L~fFdCTEj8kmOg48Xwhkc1iAMWzzmYRX4bxg2Yq0AsTdS6r1tzFpXbXmLy0H9MX5jSX2jCtG44c0Fe0WgaJvJ-aL3MCDxJKN3F32gXUaMgmyCJHU0vGDaTSdBZdDrqMMD3okCxiw-L8YnuBFI4k5fTGVGe6Gskq9GHn9ac2cxNI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1477490356&Signature=fePJc6XuAqbhx~wp8I-9kufpjvTtmKS6INX9YQBpsBnLQqB43RL8dhLWjK0sgqCFqQ2wrvmBDi1dtHzx8Kq4mMIKo3-sScNszwFzSVrVQkCfrBAB3PxasQubyVD6bv5q8gdKgiUZZI08BpTdGPHwlj7tvmxmalhPTeL~CIhdZIk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1429564125&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=BBxc6yGPDcDO0iVZ1mTr6uUkwEEB8-4gepZGtrpxoTnrS~TTzDB9B16G3cu7ZoE4mBMIkGYeGwve0w4bVCwoaF3UqXuT2-pDX9ORQlN80L9cC7JY6psVroig1X8nKJ4lnuMZOcDc0iC8SZWBkN5yI6RepodAiN1P3TvdHCyN0xo_&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1474546023&Signature=Yoqf9KnBeYXjWpQQIv6vy9RYwRkEmuuXgaIP~KefhtNWrAW1CN86Javoi3jTl3AKWbNzZl5ngYj5m69oVgzqg9ZHS0h~afV1CXBVgOmNvRHsU1t5XQViU~CH8EGiKQBuTopKRKEQokW--MKUzELhxMtiJQXa2WDuylTUMizl3qc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1440699953&Signature=TorRzdMAlIphjGrHtNnHejYDBra-3k9z12mG2DHuq2ZFgtwPULDuOkjj0uOTIDlr7sh1R7gxFwAUINlqF-PQdLWMK8mmvMRFrNP5BhoFh-AkkK9d-CoUOg4-YfFgWkXOJcgbvZXz1rTttYIqLgGPW0OUvJ220ENyslO6cs3PyJw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1478065362&Signature=aeqCjOVO5Innicp3NKx8g-kfBUBhnCmuUdEmKB41Dslo-owJ6EdzJG6jwG0k~FZX6bHr1GAn0PPCZMbMqPE8-DvucUN3P3sa1zobLOFsg3jWKJssQKHQrp5GDRX5d0FYuYVHriQjVhfw2sgqsBUGmguKwBuGD4T~7XEi-FVc2pw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_it&type=PROGRAM&Expires=1478083700&Signature=dd8kMU284Ct~lxaiBrGNqjyIs3XxiTzuoy3UsuKGyLDqambSAbTRqpktgfIU56oTeLPL75KnpRcOk3jXK1s1~93eM~TKqDwDxFC9CnUO2ut-wKozXXF9HSG2zhG9U6w47ZkQv2Ex6yktN5J~bbd~ZqP2KqbH98e5cKN0gI8LaB0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1481724390&Signature=Ipwn4asY5BiY3637i6jqE0aFy85qLEoYsRzsXkMv2uMUuOc6tht6YHknaZSjgVUeE-OcmyCskzw0tr9NJhTw0ZoFIerOJNkTbJDJKt2kqdhjIb3xJvzRSD7QMQKJZLVxp9W4PywhDDrRK8LmGW351O6dCCafqWxQ40x3uD2D6z0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_fr&type=PROGRAM&Expires=1476565671&Signature=ZhhZvaYAh2blhMxO5b4tS~hwtr6Md8PD2iH2d2HMeZ9d~481bz-PMFhlj8O0-LrGaHscWwc~9RHRAsWnCRbHBA~gT7~Zs5Lf3qrEy316MeyI5avPkCkstz2ltLKMgMB-o2oxAIQUy7NsUK2k4x0c7BZwyLajCFzfdHXZYgNx7C4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1481076013&Signature=TAOrVUy9NGeQrLsHEkqHVPscxNkiTmGzOEwQ7s08~Jp56pDvHP8QMDkEzZP4WYTj3ZLfUdHQOPM9sPPqFvraQWor6vErg9-Mao~RlpuZZgghUiI-gp~8Z4DdJchOvv1rKswAcFB0eYCb51WKkwh8FV601dz7IMWUG3-BNscQ0zQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

https://www.box.com/index.php?rm=box_download_shared_file&shared_name=5dvlnoqldf&file_id=f_629063631

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_es&type=PROGRAM&Expires=1466505011&Signature=WSn1R6QmrtdgENj1CYlYfWPAIvpWjvTDb9mU-z0SNoyIt4pwgHjxMhSY-w4snuvjpkrFaefXy7GGcTut0JnuSh6aD0ZfU2F2rgGn3pedEGj4j1EZq1xSvumPkrA2Ti~zqbiaxqeJx3QQJRxzIUONsL~bpjPVd-fGk1zJuZsX7t0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://download1659.mediafire.com/sde2ejscjt6g/.../Starter Background Changer.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_pl&type=PROGRAM&Expires=1478673653&Signature=Ll8EaeAtjJ3GvqxLt75DsVSnnizwsfgx5VabkhV1nOI0i1qwJ64kHY-Y-dyrhmeZaShnh~aeXYrPQgDmzo8OP6q8pjqOyfExHBodY6mmrLYuVRuxLoHx7kt81VbdetOUC7XbX5ib6owAdhntQ7lfUjY58nBEuxr0c5WvVBndk2E_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_fr&type=PROGRAM&Expires=1476498602&Signature=QvKlP0tNmbjj8I4B3Gx5LtOgA4m6VgYipvjHQkQERtI5b34DMftGYbhoecYxUFkaDc7i2e~Ka4xcgs~7frcEcqJZpHUfQZc7czaCdMgiqGOfJE2QqRzmUxSw6Z2NK2KEugZemd0SLFEUwFpFRDiw6z61eEL0CCK3XLK7e8KDvM8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

http://gsf-cf.softonic.com/3d5/8e4/.../file?SD_used=0&channel=WEB&fdh=no&id_file=95133&instance=softonic_fr&type=PROGRAM&Expires=1476223178&Signature=RjyNl04hOdPg3prOoAFAInd5I85QAwi-1qPg2nrvwYGpKj53~Vwxzf~OyHoKmBkK3GEj~FrWvz8lioCjn27Cm8yCBkvBTOTF~mRd2S2UoRdTcy6J-VtPZ-wIrX8cP-yKzj1LDm5KyzmdIhLN8XBm0H2yjkwUXTKQv1XL5FEc888_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StarterBackgroundChanger_V08.exe

Latest 30 of 77 download URLs

Scan starterbackgroundchanger_v08.exe - Powered by Reason Core Security