» 10143405_stp.exe
Overview
Analysis
File Details
Downloads (37)

10143405_stp.exe

Microsoft Corporation

This is a setup program which is used to install the application.

File name:

10143405_stp.exe

Publisher:

Microsoft Corporation (signed and verified)

Version:

12.0.4518.1014

MD5:

a1081ae90a52959379c4acc32cdf470a

SHA-1:

6489862e8aabc7c6b6c66b7ae6d26e9c3c53d937

SHA-256:

69f5d8e2b367c65a9af12d2ad0382fef871a8357aa2929499c2323954b0f99e9

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)
Whitelisted (by digital signature)

Analysis date:

5/7/2024 6:20:40 PM UTC (today)

File size:

25.8 MB (27,100,264 bytes)

Product version:

12.0.4518.1014

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\10143405_stp.exe

Digital Signature

Signed by:

Microsoft Corporation

Authority:

Microsoft Corporation

Valid from:

4/4/2006 7:43:46 PM

Valid to:

10/4/2007 8:53:46 PM

Subject:

CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:

Serial number:

61469ECB000400000065

File PE Metadata

Compilation timestamp:

10/26/2006 10:02:06 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

393216:57jNl2B/W9p+mzeJKDq7L0/DYnI5VkFDJ+ydHo2bnce/h5LGFT4O7DWVxFXCustW:tNlqmxetg/DYI5webEKDjutDh

Entry address:

0x56405

Entry point:

E8, 26, 48, 00, 00, E9, 16, FE, FF, FF, 51, C7, 01, 70, B9, 00, 30, E8, A9, 48, 00, 00, 59, C3, 56, 8B, F1, E8, EA, FF, FF, FF, F6, 44, 24, 08, 01, 74, 07, 56, E8, F6, 04, 00, 00, 59, 8B, C6, 5E, C2, 04, 00, 8B, 44, 24, 04, 83, C1, 09, 51, 83, C0, 09, 50, E8, EA, 48, 00, 00, F7, D8, 59, 1B, C0, 59, 40, C2, 04, 00, 8B, 44, 24, 04, A3, 74, 8A, 08, 30, C3, 55, 8D, AC, 24, 58, FD, FF, FF, 81, EC, 28, 03, 00, 00, A1, BC, 3F, 08, 30, 33, C5, 89, 85, A4, 02, 00, 00, 56, 89, 85, 88, 00, 00, 00, 89, 8D, 84, 00, 00... 
[+]

Code size:

510.5 KB (522,752 bytes)

The file 10143405_stp.exe has been seen being distributed by the following 37 URLs.

temp:PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1486006934&Signature=h0hiJpYbOneOk95USRS8HSdwScWJxzwl8y-bI1LEn3hZ-svsVVD8Ctqu-LZVkkc~HfbngGeaHOKJtBvhWe0U7jVDvjM7CAfWAKJAEyAhmqX9DeV4wJX1lV41BwH2MYs1jdMC2KIASNvusGrN5yadfmCoNi-ImbUVyZegxMj3UUo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1487069465&Signature=bvo~CgaM8KYDW928MAhGefSg636mU6WyGXrdgFxRvhpbO4FYDg63Ki6BM2jjaikuISvNo1MIlz-~hUU7NOoVjpWzYvqfRrHdfeH4jvfhZS4gEBBGkABcX6kYswe3Ka1MZAL4Cq4OX4mZ9sxdA46y3ouWCFLeYm3BO4RyE-cLQSA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1479431153&Signature=BRut5nJIrH6cLi9a6n3PjebGN3pqsJXUC3UR6EYVf1BnvFoGivusk-cwfT8jpt4exCxNWQDo4gGzuAyUmRf-ahVkD17ObDStZ3OxlwQpLc7ZT-I0DBvl7vzzOS3dKX4R0~TutgbskN1AoXkFoyY4fsGtS9SH53WMd1oxAN2T6NU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1483666237&Signature=DiSQs2fLRTSdHSQEmWXztxeGZJe~P9o3ACu~Sj1S2RnF88iCW~GvVjIBozT~K09R9yknLVYN1FQyr7a30fsZcQF~88~jdpXa7Ji1MrY9an5nwb9cDvbVMyQHbZXN81aT3yfqKHdhBQgtyOg55sSXNHbWicVgEFJeyvJXAAKI-m0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://www.jetelecharge.com/.../gop.php?id=567&c=QCZXlKaGJHY2lPaUFpU0ZNeU5UWWlMQ0owZVhBaU9pQWlTbGRVSW4wPS5leUpwSWpvZ0lqa3lMakV5T0M0ME1pNHhOQ0lzSW1VaU9pQWlNVFEzTmpJNU56UTNOQ0o5LmcvWmJPb3QxcFVFZ2VuWEZIRlVQRmZEeDFGdGJ2TG1sTEtGWHFwM1U3ZDQ9L5X

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1478161678&Signature=OwDtnx~ozTMFzaxjzeFaEI6sdjdmYe9H4laRg2Fq~l1coNBK87nzIGk2Fz51Erc-5Zg73huQ-QsgoC5vPU9qIuGoJBIsciEk1SpxNVAftpxckpgop6rsPt9g0mI9eqmaDqXRy-x-AZ6mAAyQ1YNBubE~YKajDwFIGAkSgC6jOmY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1481062950&Signature=guBMKUW3Af8ULNQsmD-RTVeofhcBoZR8~pSLuEFXbOx-xfyD6u2w4XBOZZ8a5SJ4kdFFmuICChTCgxYdytXh0zP17PSJ3-IjM0TwtDXUKyhitfF6wBKGbLLXw-~n7QcJgI5lzMIYUWWCptg2WCa1SHLPvp0XmT~G4X0Eza0EHyw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1478845373&Signature=CZ82txtixLqj21w55PUifBNWYq5J57vVBn80xA7GxgbIxbbd-EkyT4y3qMZaT8gJW6tfxhq68BwSGlf7fICN6RaHdEGI3Xn4tzFVzxmrG-woi9e7YRZ4yWFmJbJ9tCPH2hbEw9VkwPmWfFH8EtOPyWsDali4zuWBJAvhUyQgbJ0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://www.commentcamarche.net/download/.../telecharger-34055344-powerpoint-viewer-2007

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1476074329&Signature=QwLa4QejbTFAT0f2OeSYM9Kb5GA1IyVyR-~uP12ANoqAzkkAKLERJwF2pm3u2g5rcdvbIXFdeoG5jQkW3l3mO2PbdNUJVc2jrNfJF6TH5ztxUhCJNoyPhM1M5WpA5tkGruypep6QJ4EkPNxcV3mljjxQAKfXDKKV5ifc6pJNMPU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1478575147&Signature=L4URrTaFcwjLbGrNHhkIqjS-hM-JDh3OsdO7LHu4eB9fxxH6sXYqqPgtkZfQuSWXUiR15vokeafG~Lf8NNEY2YZIAYQ116yPAM7Tb5VTSD-iDJcCIC6Nhj1zAvguK3kuXgMwl3E5htHbvnQx3qbNd9mGp2EqHLnuFY1azKuNGr4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

ftp://c8568737b68866bbad3aff43a53962aa:1352649506@ftpclubicb9a.clubic.com/.../visionneuse-powerpoint_visionneuse_powerpoint_2007_francais_10781.exe

http://static.llnw.cdn.m6.fr/s/download/soft/.../visionneuse-powerpoint_visionneuse_powerpoint_2007_francais_10781.exe

https://download.microsoft.com/download/A/5/D/.../PowerPointViewer.exe

https://www.getsw.me/.../microsoftpowerpointviewer.exe

http://download.microsoft.com/download/E/6/7/.../PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1460760512&Signature=gatlfIj-VooqNVPpcGQdzUg2V9RoSdpjTYhSv5rtxDIZSvfuF0pKNwuodHLWuVXAPuGvehbrZx7h1iUE0HCq~gvhsBG2ApJpRzSEXrVtzsnCL6BGf8o0ZpZu548H93G04ixhxTpEHidiG-75RSsHvY5Dd0fSz5kllBVEopdhLIk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1459622523&Signature=i0pcUsxlNn51iAHtMDz9NZZw~ngMX3s0~ef1qpvNU8qibnpAKAYs32zvbNYnOhn8ZlIrXeKDUll2fV~KY7Dw3U3lIuDUpJkJzxO7rMHJhhutRO3TyA5jXKQQk1DHrMhMohO-LG-mOUgGxAF01AluRLyomwhdEzvRrcwb9VBbhMQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1461969920&Signature=Wzfhmi6L9Q~jiGLZoz~47sQXDHQs5SfQ6YBOKy5SJRDsDMmHbOc7bTXUFMlPouFc0vdPBSfLBLYlMvvt5-gmOf3f8JXaglAxLdNPmjCkZC6IivjyxqVmt1BaHU3cMZUk5PRkvTaMqBRDWYReFXXyJb9WfiLKI7QziL5nZg5VyZg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://microsoft-powerpoint-viewer.en.softonic.com/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPJuuM5I3KISU3UPMYypoWV JXLL2TiXlCLg5bM0v6R/SU/kg6B89WhGe5A2etKt5axieFT4v1TpY8L4HPWfelC8z5ihN41mV2LA1EzyLt57Z1A3MFEDoe9ck9puF2IQ1gh4WChVnWPxbhXiKqh37LELGYGMJZoicPW1vB4Y3TqFs0riTbcFNg8TNSI/APsQ6H7VaMLah2TlVCxpGFyf2ZbcBPWu3vtoz4Lp4a5uOgmrisykwROySkzbP6ZZz51nlV2bTDpsIzkumYq8O7EPiNrbeI4PlqpbhG/8wISEBzdIFyY4Vre N0RKiowmQnTvx/eFlNQrnkZW0Sh cCrKURfM1hpT8mSqAuXizR09yCDy1Rrj0YeAkjc1tDpY9MN/.../5QecEbyiezSJGUU5M7nvTYOzY85h6mM6MpYE4WVia29Mzlmuhy3z7cwB7Lq M7lg5pIiQBN03EmgElCys89cQlUHyoWHz117PNOsQQu RUd4py2eQdMPk2V3cUhcu0TDJEiFOoKeaUXw=

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1456378535&Signature=KT9kkiIwE~SnxF9FQnAjeh5SGhGWMnrHtQTS0r1fWei4L5uUovgT0nfXDPzJx4vK27aMmG16CyreaklIoIifom3MW96cJY0AzPiCaF1HQYX~VCCKJhOZ-Pq2XXrVLdHfcgDx5t8sda6b4c9OIH4JmFZJFUed5fXdoJEJbHVNNGI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1459997639&Signature=GjxKM7jkUHotnCUQixmeMuKFuQtvoIX6g8722pOCaiLnCGdgYEp8xcFeAVL5eTDdJru7LNO8jD3VaReIGtBuYI9nMjG7QX1fTCr9Wpm4QyymBQqvuRfcv5y8POmozTLoH4VzEWDVLGpuLZJYumcOTMW3L4oPdn6mVSCC1uKAX3o_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1461629236&Signature=HQPJUVOGXKfTwakd6Pcfpq5Y3fQ5BYKGCQmoy8WUG-oNZvTw7pgH02C12I4mM1hXvJnqQnKkcirhNKRxCSHrvhqqY6f6CPbgmdw3BomHCz6ie-dRy7YUdOQSM3vFBuB5C~ACx4XLRk0I95LcmIKPwctzSpqDHAJCa8F7Fh3wLxo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://www.logitheque.com/.../284a9878.dl

https://download.microsoft.com/download/f/5/a/.../PowerPointViewer.exe

https://download.microsoft.com/download/6/B/4/.../PowerPointViewer.exe

http://download.microsoft.com/download/6/B/4/.../PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1448426979&Signature=P1hmoX3eTxd1DB-QWcK~C~bKzW4x2lXJXkJvF~hbYgr~6EGvrJXz-zWXPrDzOaa0ZJXiP2bmwI0Z9-1U-mM528IxOfq4KG1tUrzUmePb1cIxqVqgwguSwBOOWHY2K-iK5OCCG1EBO0r5xrzqFZHRz8TjBt-7QOBz8dm4DAb85Vw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

http://gsf-cf.softonic.com/648/986/.../file?SD_used=0&channel=WEB&fdh=no&id_file=29532&instance=softonic_fr&type=PROGRAM&Expires=1456038060&Signature=GGEXRe8okSWNK1v73-ZNe2sFcYU~7M7Xg~JFIPNEIYNgqVYFUZLkazWWKzoh1uW2M2aa~YCu6LvmkSQ5fr~IqpEpOfI8FNomMIIVjPMm6Q7CZlICzIqpGYkVS7NDmPvOmr0KvWErERUxDPTewbjnjm1VIgosUrsIhXiEiArwhTQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PowerPointViewer.exe

Latest 30 of 37 download URLs

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.