home

stbndpch.exe

Skaberevnerne

Avor regata

The file stbndpch.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The file has been seen being downloaded from paiyafototips.com and multiple other hosts.
Publisher:
Avor regata

Product:
Skaberevnerne

Description:
Spejlmonograms7

Version:
1.00

MD5:
4de3e6df07c45f9a401115f53492a30e

SHA-1:
e238ae1a971c4d06adc997d70a306a21a6268a8e

SHA-256:
d6deaacee41b05f58ca5a9d14c70b622a2db78a8a5246bee2d6f65a1317a9cdd

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/23/2024 5:32:12 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Downloader (M)
16.4.28.14

File size:
353.3 KB (361,760 bytes)

Product version:
1.00

Original file name:
Gigantisme5.exe

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\stbndpch.exe.part

File PE Metadata
Compilation timestamp:
4/22/2016 8:56:44 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6144:PAXxmprxfUrFVhBgV12NBCzizWcB8h/ifAE:FprVUxV3g78amHI63

Entry address:
0x1304

Entry point:
68, A0, 13, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, CA, 9F, C1, 38, AF, 87, 66, 41, 8D, F4, BC, 81, 1E, 28, 8C, 61, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 41, 00, 20, 08, 41, 00, 55, 68, 6F, 6C, 64, 62, 61, 72, 65, 73, 74, 34, 00, 00, 00, 00, 00, 00, 00, 00, 06, 00, 00, 00, F4, B9, 40, 00, 07, 00, 00, 00, E8, B8, 40, 00, 01, 00, 19, 00, 3C, 9F, 40, 00, 00, 00, 00, 00, FF, FF, FF, FF, FF, FF, FF, FF, 00, 00, 00, 00, 40, A4, 40, 00, FC, 51, 45, 00...
 
[+]

Entropy:
7.4385

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
336 KB (344,064 bytes)

The file stbndpch.exe has been seen being distributed by the following 6 URLs.

https://paiyafototips.com/182850880564/182850880564/.../FlashPlayer.exe

https://paiyafototips.com/220405599282/220405599282/.../FlashPlayer.exe

https://paiyafototips.com/4441813559627/4441813559627/.../FlashPlayer.exe

https://paiyafototips.com/1511760563028/1511760563028/.../FlashPlayer.exe

https://paiyafototips.com/7122913878655/7122913878655/.../FlashPlayer.exe

https://paiyafototips.com/7572926024809/7572926024809/.../FlashPlayer.exe

Remove stbndpch.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.