utf-8'en-us'presstotest(windows).exe

7-Zip SFX

Texas Instruments

This is a setup and installation application. The file has been seen being downloaded from epsstore.ti.com and multiple other hosts.
Publisher:
Texas Instruments

Product:
7-Zip SFX

Description:
7z Setup SFX (x86)

Version:
1.4.1.2100

MD5:
374b53c186b871532cf72df290f4854a

SHA-1:
2cbcbf8b9160e408ac588206d6355ee48f84df0f

SHA-256:
0ef112f2a3e4b6ca384b5020854869d6b03e7972e71aa91d800afc773db40dfd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 7:02:08 AM UTC  (today)

File size:
88.9 KB (91,007 bytes)

Product version:
1.4.1.2100

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\utf-8'en-us'presstotest(windows).exe

File PE Metadata
Compilation timestamp:
4/28/2011 1:38:20 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
1536:1C1twZcAPGnKVkMW7/4z/WWNNCnV7t7mqFcNXo96V06wTpsLMupRxnDF6N66VHZd:M1yZcAPGK5+/4zbCFtiqF8Xow+dSnxnw

Entry address:
0x121CF

Entry point:
55, 8B, EC, 6A, FF, 68, 28, 4C, 41, 00, 68, 60, 23, 41, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, FF, 15, A0, 31, 41, 00, 59, 83, 0D, 24, 99, 41, 00, FF, 83, 0D, 28, 99, 41, 00, FF, FF, 15, A4, 31, 41, 00, 8B, 0D, 1C, 79, 41, 00, 89, 08, FF, 15, A8, 31, 41, 00, 8B, 0D, 18, 79, 41, 00, 89, 08, A1, AC, 31, 41, 00, 8B, 00, A3, 20, 99, 41, 00, E8, 1D, 01, 00, 00, 39, 1D, 10, 77, 41, 00, 75, 0C, 68, 58, 23, 41, 00, FF, 15, B0, 31...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
70 KB (71,680 bytes)

The file utf-8'en-us'presstotest(windows).exe has been seen being distributed by the following 5 URLs.

https://epsstore.ti.com/.../cskatch.jsp;jsessionid=2d6869d81cb5c070b4daddf52060bf8cbffb0a892ecb7169f290243b4f054009.e34TbNuKax4RaO0Rahv0?fileid=ZG698BC46E34417CA544577F9AFB7C33C8DB05F23F636EA3AA&jfn=ZG9D7D47737A099362059A9D91F1A9CEE9BC6BD46A375B6F22AD89476DC63DE4DD251C4D70D9BFC02BCF2AA9D27455347651&oas=vA0HEM-2ojT57C45-mNjeQ..

https://epsstore.ti.com/.../cskatch.jsp;jsessionid=df935308969892ce87637971d253f1f6db53d91f802e2ddd57a8950f4cfac9b0.e34TbNuKax4RaO0Rahv0?fileid=ZGAB4BBA75A94D36ECF33549B2AAF8B72767D01BFA4FE61136&jfn=ZG93EE897E6B0BB7C7871E25E81C23659278C956D4E275A369A5040592BD51A34A4697F95B872C33854BE8D4665E364EB1F5&lepopus=Tlqh2Q7KI2hs01bLKr033W972c&lepopus_pses=ZG70185A501D4D52D4186DBC38C59E3A77831E5BA25B63164D54188A4AD674E74103471A999A65891015F94C133CA8AE111DE2EE4AD550B4D4&oas=g7XziP_ef87hcupVlOYiSQ..

https://epsstore.ti.com/.../cskatch.jsp?fileid=ZG8E2578B056A25457A6D7B856460EA8B6997E363D974800C1&jttst0=6_23871,23871,-1,0,&jtfm0=&etfm1=&jfn=ZGF953E847D43B50D59F7314C88A3383B578CC61C04CEA008CF71A686EB96CB550A5BE87374547E4325F6CDB682C2CE1611C&oas=cH0Y6QgkDcg6qBTprZs1Wg..

https://epsstore.ti.com/.../cskatch.jsp;jsessionid=62a5e3339c3acd664404791ec5f327df1cd3778c4fed18e6cdf55d849b2082f6.e38Ka3yObNqSci0LbhaPb3mSbxyTe0?fileid=ZG9D911BDE5D5950838B8B2D97114D31C6FF9D147C8CD79B64&jfn=ZG460D6705D9A136F67BA5979B53161882CA33695D15DB00B7FC91273AD82E26646202978C8DB48748CFFF81F7EE2027E3EE&oas=F5zsXPPDQwxbMQFs2QgEGg..

Scan utf-8'en-us'presstotest(windows).exe - Powered by Reason Core Security