sznsetup-lt.exe

The application sznsetup-lt.exe has been detected as a potentially unwanted program by 3 anti-malware scanners. While running, it connects to the Internet address download.seznam.cz on port 80 using the HTTP protocol.
MD5:
9033dbee427815f396f63928c3273862

SHA-1:
999a21163538790c49640969648818410ac3ef5c

Scanner detections:
3 / 68

Status:
Potentially unwanted

Analysis date:
11/23/2024 4:40:28 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Seznam
16.11.8.23

Trend Micro House Call
PAK_Generic.005
7.2.150

Trend Micro
PAK_Generic.005
10.465.30

File size:
1.2 MB (1,266,688 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\documents and settings\zdenek\data aplikací\seznam.cz\sznsetup-lt.exe

File PE Metadata
Compilation timestamp:
4/23/2013 9:30:11 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
10.0

CTPH (ssdeep):
24576:a7sp3PWWBbM5IrRn9LVt9cExxYJvpwLiAaZrcp:Xp3PWWbTVglpwLisp

Entry address:
0x8B9A0

Entry point:
E8, 50, 57, 00, 00, E9, 95, FE, FF, FF, 8B, FF, 55, 8B, EC, 56, 33, F6, 39, 75, 08, 75, 1A, E8, 13, 33, 00, 00, 89, 30, E8, F9, 32, 00, 00, 6A, 16, 5E, 89, 30, E8, 9D, 32, 00, 00, 8B, C6, EB, 55, F7, 45, 0C, F9, FF, FF, FF, 75, DD, FF, 75, 08, FF, 15, 00, B2, 4C, 00, 83, F8, FF, 75, 16, FF, 15, 58, B0, 4C, 00, 50, E8, EE, 32, 00, 00, 59, E8, C2, 32, 00, 00, 8B, 00, EB, 28, A8, 10, 75, 22, A8, 01, 74, 1E, F6, 45, 0C, 02, 74, 18, E8, BE, 32, 00, 00, C7, 00, 05, 00, 00, 00, E8, A0, 32, 00, 00, C7, 00, 0D, 00...
 
[+]

Code size:
807.5 KB (826,880 bytes)

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):
Connects to download.seznam.cz  (77.75.77.38:80)

Remove sznsetup-lt.exe - Powered by Reason Core Security