» 32bit_win7_win8_win81_win10_r278.exe
Overview
Analysis
File Details
Downloads (55)

32bit_win7_win8_win81_win10_r278.exe

Realtek HD Audio

Realtek Semiconductor Corp.

This is a setup program which is used to install the application. The file has been seen being downloaded from ftp-stahuj.centrum.cz and multiple other hosts.

File name:

Publisher:

Realtek Semiconductor Corp.

Product:

Realtek HD Audio

Version:

R2.78

MD5:

600aca46c82bb56e4073c748266d44e6

SHA-1:

a765ad9e34cc2077409626721aa4309aee64a0cc

SHA-256:

d9cc989a496fd1422eb16ee41da1da2c465c531559a86eb4cea230b9a6e1e6a3

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/27/2024 4:16:48 PM UTC (today)

Scan engine

Detection

Engine version

Trend Micro House Call

Suspici.4206F1EA

7.2.143

File size:

93.8 MB (98,318,818 bytes)

Product version:

R2.78

Original file name:

stub32i.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\32bit_win7_win8_win81_win10_r278.exe

File PE Metadata

Compilation timestamp:

3/27/2000 2:09:58 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

1572864:CD/nAvsk+e7KKpLXhTLA5IWcL8O9AhrzPv/xPuzgr89saabfJq8aSwe90AGu:YAkk5tHDQnrzn4zgus7bfmSN+8

Entry address:

0x83F7

Entry point:

55, 8B, EC, 6A, FF, 68, 10, 23, 41, 00, 68, 30, B5, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, E8, 21, 41, 00, 33, D2, 8A, D4, 89, 15, 30, 53, 41, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 2C, 53, 41, 00, C1, E1, 08, 03, CA, 89, 0D, 28, 53, 41, 00, C1, E8, 10, A3, 24, 53, 41, 00, 33, F6, 56, E8, E0, 00, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, 11, 2F, 00, 00, FF, 15, EC, 21, 41, 00, A3, E4, 68, 41, 00, E8... 
[+]

Entropy:

7.9987

Developed / compiled with:

Microsoft Visual C++ v6.0

Code size:

68 KB (69,632 bytes)

The file 32bit_win7_win8_win81_win10_r278.exe has been seen being distributed by the following 50 URLs.

http://ftp-stahuj.centrum.cz/dl/671d99b449acb92fb8b50f9fda17735f/58188c29/stahuj/download/software/secured/r/realtek-ac97-audio-codecs/278/.../32bit_Win7_Win8_Win81_Win10_R278.exe

http://ftp-stahuj.centrum.cz/dl/039c8460f6e9f46646bc7b2f1257c192/56ed5de9/stahuj/download/software/secured/r/realtek-ac97-audio-codecs/278/.../32bit_Win7_Win8_Win81_Win10_R278.exe

http://ftp-stahuj.centrum.cz/dl/82879c60b1b0245f175d59b0e28ea73d/5845c30d/stahuj/download/software/secured/r/realtek-ac97-audio-codecs/278/.../32bit_Win7_Win8_Win81_Win10_R278.exe

http://files.jalantikus.com/dde/181/.../32bit_Win7_Win8_Win81_Win10_R278.exe

http://ftp-stahuj.centrum.cz/dl/04983bd3e1c40860301e4e06f119e6af/58036959/stahuj/download/software/secured/r/realtek-ac97-audio-codecs/278/.../32bit_Win7_Win8_Win81_Win10_R278.exe

http://ftp-stahuj.centrum.cz/dl/488c95535e36a15cc5f5c3f14cd0622d/578d0ddf/stahuj/download/software/secured/r/realtek-ac97-audio-codecs/278/.../32bit_Win7_Win8_Win81_Win10_R278.exe

http://ftp-stahuj.centrum.cz/dl/4c9f75c67f31ab45f952c1d7152038b9/56800977/stahuj/download/software/secured/r/realtek-ac97-audio-codecs/278/.../32bit_Win7_Win8_Win81_Win10_R278.exe

http://ftp-stahuj.centrum.cz/dl/2e7956ed627df9ed2673608080b68009/58407d65/stahuj/download/software/secured/r/realtek-ac97-audio-codecs/278/.../32bit_Win7_Win8_Win81_Win10_R278.exe

ftp://WebUser:Lc9FuH5r@202.134.71.21/pc/.../32bit_Win7_Win8_Win81_Win10_R278.exe

http://filehippo.com/fr/download/file/.../

http://ftp-stahuj.centrum.cz/dl/a81c3949003be193a7807371e8c32aa4/58186378/stahuj/download/software/secured/r/realtek-ac97-audio-codecs/278/.../32bit_Win7_Win8_Win81_Win10_R278.exe

http://ftp-stahuj.centrum.cz/dl/d5076cb5c9c93a96cf2201392e2b3cc7/57c6d00c/stahuj/download/software/secured/r/realtek-ac97-audio-codecs/278/.../32bit_Win7_Win8_Win81_Win10_R278.exe