» {92242db4-2d0c-484b-b553-777645845e09}
Overview
Analysis
File Details
Downloads (10)

{92242db4-2d0c-484b-b553-777645845e09}

ScreenTime for Flash

File name:

Product:

ScreenTime for Flash

Description:

Screen Saver Installer

Version:

3.1.0.0

MD5:

bf7cc489f5ba30f07a3c2fde2f9128e4

SHA-1:

d0caec2234c2ad0be9bf963625f7e3cfb4bb20f4

SHA-256:

4ff4e7d74c9774817953712a94fa1a702b5caa4539e2309d7b58f9a275a6cbb7

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/27/2024 4:25:56 PM UTC (today)

Scan engine

Detection

Engine version

Comodo Security

Heur.Suspicious

21457

File size:

3.1 MB (3,241,918 bytes)

Product version:

Unlimited

Trademarks:

ScreenTime is a registered trademark of ScreenTime Media.

File PE Metadata

Compilation timestamp:

6/20/1992 1:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

98304:0PLZZGdTRhFJ+yNfHDGX/k6yCaV2JZlRu:gZZGdTjfjGPCCaV2y

Entry address:

0xF1001

Entry point:

90, 60, E8, 03, 00, 00, 00, E9, EB, 04, 5D, 45, 55, C3, E8, 01, 00, 00, 00, EB, 5D, BB, EC, FF, FF, FF, 03, DD, 81, EB, 00, 10, 0F, 00, 83, BD, 22, 04, 00, 00, 00, 89, 9D, 22, 04, 00, 00, 0F, 85, 65, 03, 00, 00, 8D, 85, 2E, 04, 00, 00, 50, FF, 95, 4C, 0F, 00, 00, 89, 85, 26, 04, 00, 00, 8B, F8, 8D, 5D, 5E, 53, 50, FF, 95, 48, 0F, 00, 00, 89, 85, 4C, 05, 00, 00, 8D, 5D, 6B, 53, 57, FF, 95, 48, 0F, 00, 00, 89, 85, 50, 05, 00, 00, 8D, 45, 77, FF, E0, 56, 69, 72, 74, 75, 61, 6C, 41, 6C, 6C, 6F, 63, 00, 56, 69... 
[+]

Packer / compiler:

ASProtect

Code size:

546 KB (559,104 bytes)

The file {92242db4-2d0c-484b-b553-777645845e09} has been seen being distributed by the following 10 URLs.

http://gsf-cf.softonic.com/d0c/aec/.../file?SD_used=0&channel=WEB&fdh=no&id_file=60813&instance=softonic_en&type=PROGRAM&Expires=1478424103&Signature=WMZpMXwuHwsQPsQVXbzF6Ja0yw~Pp4jUrTF~Gvb~r7qRCPIBOAtTjq67eOeN5H9yw25Z~s1R-VcOvTUgd~wLAsvEywg-TCiuN~AdrjLtGJ4iuy0CsKw0RsnV8H23z2r28XYMVqvpvsqszQcCQxXmolICc~tHIg~GMsP~gPX1N4U_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=300_saver_01_setup.exe

http://gsf-cf.softonic.com/d0c/aec/.../file?SD_used=0&channel=WEB&fdh=no&id_file=60813&instance=softonic_en&type=PROGRAM&Expires=1480524427&Signature=Qew7qf3nYhslerEMrbHUWTEFPi-vdPCJvHF3pdfRYu9ZpLsTAwkMKfFutM23H5iPDo3JEbrGPR2fr5PzM7p8v8NCjr7CBs3t6ke-W13E8HEKa2i06m3zlGBMAO5l8~efqexZzLuSpqqAW-XT4tXEf0NdYxeTODsGzNelYmophWM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=300_saver_01_setup.exe

http://gsf-cf.softonic.com/d0c/aec/.../file?SD_used=0&channel=WEB&fdh=no&id_file=60813&instance=softonic_en&type=PROGRAM&Expires=1464595792&Signature=KpiZjKTnzlKWr8M-BwRMfoN4H7LFaDyagjOwIQu1Yfz~6caMaVt4izanQsqWGCknU6SdKyJ8x-0he-mnnJt2GJzlmM--dzVB9d8YVEEchFnlqrXeyzqZkAItHI4NuWTqPRsxVpH7tt4vHyVaqJUfB8F3pliHWGo2A0D7as60ZYs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=300_saver_01_setup.exe

http://www.aolcdn.com/.../300-screensaver1-installer-pc.exe

http://gsf-cf.softonic.com/d0c/aec/.../file?SD_used=0&channel=WEB&fdh=no&id_file=60813&instance=softonic_en&type=PROGRAM&Expires=1467536164&Signature=NWvngc4kOtDFS-kc0pcpgGuM~LwLdUm7Sbi9rm8MJdMklPPrZt2WD-fFHHnn9tEbNe3SpGl1XEWmlrU1rePLLjaO72JF-~xSQgc6BdLolTkbJMKyo1z3kDeGMXjQESXix3pFKtRCSRi00L~837z0nj-8xk~ZMKtHcwvPsivE6vw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=300_saver_01_setup.exe

http://gsf-cf.softonic.com/d0c/aec/.../file?SD_used=0&channel=WEB&fdh=no&id_file=60813&instance=softonic_en&type=PROGRAM&Expires=1460390173&Signature=ixAl-vNYzndOQlFJ1KihsmO2~Iju0v8LN6cJiRcE2xlz2nmE~cT94~H3UN2ylkGzae1r3-Gouf2915FBeHdSBy5lclbnia-IJdpHVCY-XS1V~-0tM6SXJVbkGmBxKShoK3JIUrBF7fAZitWcNYuXrGlaexKBePfumX9OoyoVkhc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=300_saver_01_setup.exe

http://gsf-cf.softonic.com/d0c/aec/.../file?SD_used=0&channel=WEB&fdh=no&id_file=60813&instance=softonic_en&type=PROGRAM&Expires=1438661761&Signature=A7w4kqBnnulzsC6CsLFxgAIecTOxTkFDi-pAkv3XvYDMKOjSSIkqTRck2ndB-4NzDSheMTHi03OL1COxRd~eVFAs23auGgUUTBCOcwdpWkZJZbPBo9LnufbviOF5XrgJDRinB2agPxizRKpaHvKZs-AuWLQCu311h2rYmRZP8PU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=300_saver_01_setup.exe

http://gsf-cf.softonic.com/d0c/aec/.../file?SD_used=0&channel=WEB&fdh=no&id_file=60813&instance=softonic_en&type=PROGRAM&Expires=1445683389&Signature=gVKhSDzeSNMMFkx-p0JonHRnGJyUXxcWnM0sLdnPIsc~0dHobA9DFS~NcdrL-m0clfySNPdf5iBDNDBLd3RWmUthPFkxXwkgIACby5xHfqodjCyqRmf96C9XXD5tHkMfEuf6ToKcFi3ZlwAElduVIpVU3X5nD0jNHw-bpKblo9Q_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=300_saver_01_setup.exe

http://gsf-cf.softonic.com/d0c/aec/.../file?SD_used=0&channel=WEB&fdh=no&id_file=60813&instance=softonic_en&type=PROGRAM&Expires=1458611402&Signature=VeTTZY-a6k9-SVvL5TxtIn333YxcP5epc1nzPTLTvwJY~Ql9PJGZxRzRjJ2uc~6Bf6oS52eZrgZCkS1PyKlcxPWiRSoXuYXTIf3wXw~KAlN7oRtqZeu0MyKTIJsLXLMwXuKuecXZFTXskcO3Z10WSHua7z3Qr7mqV1enfFc-YTM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=300_saver_01_setup.exe

http://gsf-cf.softonic.com/d0c/aec/.../file?SD_used=0&channel=WEB&fdh=no&id_file=60813&instance=softonic_en&type=PROGRAM&Expires=1449718072&Signature=gBjEupiNUP9RkYJIPWmB3E--w1ybyAngKKoFag4Giysxpl2Et5eY5fYNOpFDAyM9oF1voLShd8i1FmcvGxGW6hodKivRmCM9iWi8L1UEB7JtT-8IatQskbRUbhELoAv9NedrKREhwxHuF5YeqLCR~CZztuYPuItb7K8JzV3zzns_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=300_saver_01_setup.exe

Scan {92242db4-2d0c-484b-b553-777645845e09} - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.