swissknife.exe

PackageForTheWeb Stub

InstallShield Software Corporation

The program is a setup application that uses the InstallShield Setup installer. The file has been seen being downloaded from dw.uptodown.com and multiple other hosts.
Publisher:
InstallShield Software Corporation

Product:
PackageForTheWeb Stub

Version:
2.02.001

MD5:
47f1bd289f9c04245cf25f52e57a4c08

SHA-1:
75682bc6edb373d9e5c31683dcde6fa9dd8deffa

SHA-256:
0e22a5c68f5286e7b41bc35960229d8b133588046d1eabbbaa380c9669f9b824

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/24/2024 5:20:26 AM UTC  (today)

Scan engine
Detection
Engine version

Vba32 AntiVirus
BScope.Trojan.Diple
3.12.24.3

File size:
4.3 MB (4,556,134 bytes)

Product version:
2.02.001

Copyright:
Copyright © 1996 InstallShield Software Corporation

Original file name:
STUB32.EXE

File type:
Executable application (Win32 EXE)

Installer:
InstallShield Setup

Language:
English (United States)

Common path:
C:\users\{user}\downloads\swissknife.exe

File PE Metadata
Compilation timestamp:
3/26/1998 9:31:20 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.0

CTPH (ssdeep):
98304:y6Wf3DlVM4Ju92i26s7GzbF6E/cvbxa1XJ+w5TN5NHRhI:UfJlJu9M6s74b4acDc+wdN3HRhI

Entry address:
0xC110

Entry point:
55, 8B, EC, 6A, FF, 68, 40, 21, 41, 00, 68, 68, EC, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, C4, A8, 53, 56, 57, 89, 65, E8, FF, 15, 58, A4, 41, 00, 33, D2, 8A, D4, 89, 15, 38, 74, 41, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 34, 74, 41, 00, C1, E1, 08, 03, CA, 89, 0D, 30, 74, 41, 00, C1, E8, 10, A3, 2C, 74, 41, 00, E8, 94, 01, 00, 00, 85, C0, 75, 0A, 6A, 1C, E8, 39, 01, 00, 00, 83, C4, 04, C7, 45, FC, 00, 00, 00, 00, E8, EA, 27, 00, 00, E8, D5, 27, 00, 00, FF, 15, 5C, A4, 41...
 
[+]

Entropy:
7.9914

Developed / compiled with:
Microsoft Visual C++

Code size:
67.5 KB (69,120 bytes)

The file swissknife.exe has been seen being distributed by the following 41 URLs.

https://dw.uptodown.com/dwn/ecIndgZ_IZAo_EmOGYASRhmuK0zdtAyDQtW-HG4M2WXwLF6v1gt3gMyEwOVW-rDwhXHTHob91Ujy3PEUI2Y9FyJgA2Io6Vo7e35KgJypswbdd1aVM4G6tK-7K2Gu49ms/hsFKrD6DitUDzfQIp1iRXWSnIMlsGKbMyk930TUlS9CwYQGsm52DX3WxSLyiLUAtdyuu1ccXMcKshpiwC6nXPTFJ3yYzILWM5DgUbPn6ayo7QbdIr3kxOVLHSxWKP9Ih/c9NJj6y-_6BTHfDdhWzdOz7EHo_5B8gPmnf_7iE2RKgr1tspqj4XKUhmCQiHs6CdslK7Sk60bE3O8Kv6K1YEJglny1JTDpKOXCnM-YpH-AuV_DeZxg44sdF4DY-cvJns/.../

http://lb.cdn.m6web.fr/d/c/a/8039abf936b6400f7b31970da103d3db/589b123b/soft/.../swiss-knife_swissknife_3.22_anglais_18513.exe

https://dw.uptodown.com/dwn/CeQ4ICxTUHStM62svxGkKe89-DNlFPlfs6FzyPTCUs5EYqqZxnzvp9cm2JrV7zHajhdjrrAn0Xm4_mxfROH88IwEF-hsJmC4c0-3bah4-KhWaP0oWscoYGa5AJ6RZIxe/u94152X76wQ2uFgMK8C-lB9Sk3dPt5ZpkuoSHcj-OgMkUNc19wcNxLsD0TXp5qLe5Hb2TgbrgSpV2DfwIR8mmuti1eRIB_19VJq6DfyTJC6-iE7qezbGfuPpQo6I7CC5/Xc3z6xpNlWfCPm1Qb6St__H8JISdGkiTev1PYq4MP9O1VezoWeD9LCbV1QxbnervbIvznfovZF36xS4Iw3JX3C4fJ-6XrhLxOhsRDMMqmrqFMYr3ZtbO_EKtzPg8nQ61/.../

http://lb.cdn.m6web.fr/d/c/a/510ebd23d9860fa2851413bdf32020fa/55e8a299/soft/.../swiss-knife_swissknife_3.22_anglais_18513.exe

https://dw.uptodown.com/dwn/QIEFogkVw09lVjM2BEsbY74moxfM5TzTbUx85bvmoj17i18ofvE2SmDVOm7M5TTKa2wSO_qz2Zj2xH68o4PYLJBqrIRMkz1qVJJX2ui0ri_6qCU0k2gZqJg-xA89IMxQ/wxL7UHVOG3Xzj_wTOoSg7-4pysdG8Whu2mBDktTunYqHkXtBOOKg8YmOweWjbDf_UDtcIKb61uPmg17VwB7eys0vCKJhszrt_-_tY_-3QByPGvS-VA-xkYFRE18hBftV/PMebdVTFCbc8zxyhaNC5nM6Fw3jB9-_McBh5h5dK7kAC-8CwJ0C13udBXvBb0GcsxsnAkpiCcwkQFa1Cg1l_nhW5voWcbmsaX-3d9bCxaM3fjfMP9oTveKDAOQtCsG-x/.../

https://dw.uptodown.com/dwn/sGmZx0pFp3xhgky6R4mfQ5hta3--qAFaZ4d3ch8izIMX4nmmhdjuAS27Oi4XuUhi1QL-RVjmMgN0Mtnqe5GFKxLvyO4h6HtAvirGnrsuL-f0Fqnoa_Wz-Ykd1wxuBmXv/lLgXArLfvyOO7KqPhLVqOKTsZjyh0mHx464PWb1XnpRQWAI27V-aA8k5z_2Ggwt5yC6JzZ2_6t_w76dtVs4iuUx5r7VyuAAR_PWULOhBoGhi3ISy1x_FthvG-llQxZEo/9quv3Q8_BYXL_2JXVXRdlDUZ4aXTadgW-eqiHSnRoF4Nds516qcPfzj31XaopkacGYxQeEtkLwkAC_7eM0IijLdwQH6GPxchE8ZvnQrjau0UsDzuL04sUyc2tLNww6ix/.../

http://www.toucharger.com/.../3a78952f.dl

&onid=2248&oid=3001-2248_4-10070864&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=utilities/file-management&topicbrcrm=&pid=10485574&mfgid=6298806&merid=6298806&ctype=dm&cval=NONE&devicetype=<!--esidesktop&pguid=b847c75c7eddea85149e3e25&viewguid=gaA-GO@ErfozIwdLjg4QLCcQwFUR5FIumptZ&destUrl=http://files.downloadnow.com/s/software/10/48/55/.../swissknife.exe

https://dw.uptodown.com/dwn/xLz9IGytQ5ijHaYX5r1Ps_XJha6BC1Z07aGx4p95tGGCN5SlnpN7YkKFJFe4p3J9nypxzC-ZZCg9evtZCssIfa7i9LIBRSrIoWM-9r1fSmcppJe402qIEq6HgaWlUaQv/MH0svgL5BXZCuQqzCnrKoLrGRjAJkfpu8Piq7HUutAeGO7B49_RF6sj7bnZpO8LyLWV7suibg8MR9lGIeEK-BLoabzUM3qUdfO4YNP9XjQLNV6CVj7FGOmu-tP5pkhYY/.../

http://lb.cdn.m6web.fr/d/c/a/d909b8274c5983ccec3a09a91fbfd738/57dafa88/soft/.../swiss-knife_swissknife_3.22_anglais_18513.exe

https://dw.uptodown.com/dwn/sxeKrMKHC3GdMOhOOIck_SD8eksce-xCIwCuXAXRdrIQu3W9qUKeHReh5pB2IWXWWACSQt4Td46yJV6qmm7WJYXA84QbUNpua1k1_2jtD-7k1ItYeZ6RJZPDMgtBLATL/H-euT-fgeY2l3yUahVIpP9s5xFSexXOKoFtlyLAa2JDzIIuCzRRw855CjVjMTztOCVZ8xGQO05HESChXqk8l2puUfrCqILwprSgp9QJrVwMPMyMqbVQGhCCOkwL-FxkD/c8FNTttULwhauWJM4wfhIytE4Ew4Wm_3VEXquSiSr5lJV_DkL7KnAD_yPfPojOkUCvPauOy3m7PdYsrYc_ReWitgyhcz6RahDHBmxP0mOgV2NCrs438k0Cem04ABQvhU/.../

https://dw.uptodown.com/dwn/GPZkrQQUfOpcbWlKrQWjPwnao5sdzVPBvYXCOt4Ysqx826I1ESVXLnJ0vbhbOYEfjbv816AAJr2o3xocB_2uwb6PXGwIzKABrY8ar9bmV5oWeCukN_AS4BY9cPgw0LH7/k7fzcugDYNpvoBvKzH8asIbNBl2WWDocAe7QxAwyLqChO8os3MwjFaijTyjmbnl303oF93euEJD20mKCbS4EJfnSBjX3vz7urAEf2O9rZvwdYFdbKuRHezGQiKnLBZLL/OxvaT9ObtbotL89Be8CKmG7Wa1gZn-wcdoX3QwECA200qJ5xv6UHrlwpgkp4P-Yrj1-o-P2nTqltLXMbL9dz5mZw50EgP-owaYRkn_3dzaK85Qzu8_Br4mmgNMwV0Aby/.../

http://webusers.ps3gen.fr/minimec/Tuto/.../swissknife3.22.exe

http://lb.cdn.m6web.fr/d/c/a/9d3a9ab2609f65c300fceab78204ed31/5721438f/soft/.../swiss-knife_swissknife_3.22_anglais_18513.exe

https://dw.uptodown.com/dwn/GZL7Ouujw_livfe6hPcAG_q-LPL0E_5LS_t15MNdzOcnT2hTez67xTnmDYI-qN3RR_lr8V1mgrxqEvOT4InMzzNtMC9hPGQYcCVqlqBve0MkOcL6WHdYdtC2DGtaJJEj/T6h66IGN3BI4UaWH6RYFenTk1kleAp4vLoBsIeeb9jEO-zA_fuySjW6rE7o90TpGCSUQ2FjdeQkfbxTzy40X4cMeEIC6hguw82S9cX_eqnbo66xBMml8gi6dI-iuFuJ3/WRzKLmq3IQjHsUxlELfwVy9xSxej5EY_RlAX2cT5JS1GuBcaavNChxlH02iEwIne2LChIro2C2ws-XMIKGQqaWXZeQ_nONXOUORPkULxu-sU-L1ddulfXTKEnaQRpH3W/.../

http://ec.ccm2.net/www.commentcamarche.net/download/.../swissknife-3.22.exe

&onid=2248&oid=3001-2248_4-10070864&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=utilities/file-management&topicbrcrm=&pid=10485574&mfgid=84760&merid=84760&ctype=dm&cval=SPIGOTWIN&devicetype=desktop&pguid=03165cc7134dd72668f2e29f&viewguid=Zj3Iu@6gsLTwav2HrInPtWbrTm4i1aw7hzec&destUrl=http://files.downloadnow.com/s/software/10/48/55/.../swissknife.exe

http://lb.cdn.m6web.fr/d/c/a/1e798d13a8d286774fced2e6e3c49605/58223f70/soft/.../swiss-knife_swissknife_3.22_anglais_18513.exe

&onid=2248&oid=3001-2248_4-10070864&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=utilities/file-management&topicbrcrm=&pid=10485574&mfgid=84760&merid=84760&ctype=dm&cval=SPIGOTWIN&devicetype=desktop&pguid=33ae5609c35c59b59ae9a672&viewguid=a01WwtCvD73RVxY0UR5@kaqJSvARkPUHS5r3&destUrl=http://software-files-a.cnet.com/s/software/10/48/55/.../swissknife.exe

http://ec.ccm2.net/en.kioskea.net/download/.../swissknife.exe

Latest 30 of 41 download URLs

Scan swissknife.exe - Powered by Reason Core Security