» 9413586_stp.exe
Overview
Analysis
File Details
Downloads (14)

9413586_stp.exe

Pazera Free MP4 to AVI Converter

Pazera Jacek

The application 9413586_stp.exe, “Pazera Free MP4 to AVI Converter Setup ” by Pazera Jacek has been detected as a potentially unwanted program by 2 anti-malware scanners. This is a setup and installation application and has been known to bundle potentially unwanted software. The installer uses the InstallMonetizer platform which will donwload and install adware toolbars and other potentially unwanted software offers during setup. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.

File name:

9413586_stp.exe

Publisher:

Pazera Jacek (signed by Pazera Jacek)

Product:

Pazera Free MP4 to AVI Converter

Description:

Pazera Free MP4 to AVI Converter Setup

MD5:

ccbaca90736cf430267c09e82b1a81c5

SHA-1:

0019b16e4183df28004db503f2e3d2075a0fd541

SHA-256:

f5d3fab588a96e2f07c6799fcfe240d76bac530a484d975c0232e24a085c3df6

Scanner detections:

2 / 68

Status:

Potentially unwanted

Explanation:

Uses the InstallMonetizer distribution platform to bundle adware.

Analysis date:

5/4/2024 6:44:31 AM UTC (today)

Scan engine

Detection

Engine version

ESET NOD32

Win32/InstallMonetizer.AF

7.9190

Reason Heuristics

PUP.InstallMonetizer.Bundle (M)

16.3.10.15

File size:

9 MB (9,417,032 bytes)

Product version:

1.7

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\9413586_stp.exe

Digital Signature

Signed by:

Pazera Jacek

Authority:

Unizeto Technologies S.A.

Valid from:

5/10/2012 6:48:07 AM

Valid to:

5/10/2013 6:48:07 AM

Subject:

E=jacekpazera@wp.pl, CN=Jacek Pazera, O=Pazera Jacek, C=PL

Issuer:

CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:

3235239474BA72D27A7E6ADD9FD85B75

File PE Metadata

Compilation timestamp:

10/9/2012 8:48:22 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

196608:LW3XwCgMlrxj9E4NUnX9vrPxYkLGwse3I7/EXlN90LGQkSbcKEs:LW3gfMlrxzoxYoJb3I7MXlN0rkSbL

Entry address:

0xF3BC

Entry point:

55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 64, ED, 40, 00, E8, E8, 71, FF, FF, 33, C0, 55, 68, 89, FA, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 45, FA, 40, 00, 64, FF, 32, 64, 89, 22, A1, 48, 3B, 41, 00, E8, BE, F7, FF, FF, E8, 65, F3, FF, FF, 8D, 55, EC, 33, C0, E8, F7, C3, FF, FF, 8B, 55, EC, B8, 4C, 66, 41, 00, E8, 6A, 58, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, 4C, 66, 41, 00, B2, 01... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

59 KB (60,416 bytes)

The file 9413586_stp.exe has been seen being distributed by the following 14 URLs.

http://gsf-cf.softonic.com/001/9b1/.../file?SD_used=0&channel=WEB&fdh=no&id_file=77585&instance=softonic_es&type=PROGRAM&Expires=1471454237&Signature=Z6GbgjaQu~fvH3f9kE52cpgZtugeqz59jYKkirA1XbyyICpNMVd7uPbiUsapcTkXd~DJAdY42qRW~kNXNaw32Z~HZBFCC9YoLNGzasOiTYkKyutkedxg2yQZ4ZWAaQCW9Y-Nr6jXb8NDxK9ygwdi2Q~MXg6qWTtmWcadoowv-XM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=Pazera_Free_MP4_to_AVI_Converter.exe

http://gsf-cf.softonic.com/001/9b1/.../file?SD_used=0&channel=WEB&fdh=no&id_file=77585&instance=softonic_es&type=PROGRAM&Expires=1475223656&Signature=JLWk9HxGi7JfMGdxKcWtR008gzXrQWAhxAJu6p25dvtnee37nJj-OEnitvXU04MFA5BAwQegFixYUpRda99fLNHjXMiK1kOAJfii~OIzK2uAMaHKINSVtBHAH0OB47F4b4LAetSu6WZhGeE2cQpyzodjmw0TsPXkKLtAaNcD4us_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=Pazera_Free_MP4_to_AVI_Converter.exe

http://gsf-cf.softonic.com/001/9b1/.../file?SD_used=0&channel=WEB&fdh=no&id_file=77585&instance=softonic_es&type=PROGRAM&Expires=1479361146&Signature=TSEPnGzJ0HDqt16gGOItwjJ03ii9z4Y4WSgEzoYRT0s3EdSpWIZtb4ysMcsImWKMNak2yKWjY~fPY8SdFkPGpV57mRPqqVmqA0NfN68jRqrduqt0jucTZ8dMgN9kTc5WfLulwo0Zl2HtlX2VrFUy7xmcqRioCZPzVCyFhzGGNVo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=Pazera_Free_MP4_to_AVI_Converter.exe

http://gsf-cf.softonic.com/001/9b1/.../file?SD_used=0&channel=WEB&fdh=no&id_file=77585&instance=softonic_es&type=PROGRAM&Expires=1478043223&Signature=U1h~h4sjrtdGamJKUtOk4ax6n4KPqiQPtwhFoJaucREAfiTEKDO8x~xhECDmnDRC1vS~eOxe0AbtAKwqZirGY14z3PWR5JMJetYO3DDvXjzpE15F5x~xiNNqFAy88YbKujYJC1nRhwxtwFl7lwYs0ooOlgKMXmGrViANTi7eCx8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=Pazera_Free_MP4_to_AVI_Converter.exe

http://gsf-cf.softonic.com/001/9b1/.../file?SD_used=0&channel=WEB&fdh=no&id_file=77585&instance=softonic_es&type=PROGRAM&Expires=1477929383&Signature=B2ZicVpqmWvE3CeOOUAZNnwrd3b6mOtvVCfhGucPcLo7TiP9P5c3PwFW2JNp3EZBZitsL-2NaOK6mWFOHqd~gOhaEosKe59QHYh~6bPCc7xKibk8yIqLv62KaLR660WLas-IHdgKpGfng-BHqllq3xJNZD0bHPSdXNJZOixn3RI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=Pazera_Free_MP4_to_AVI_Converter.exe

http://bramegm.com/software/files/.../pazera-mp4-to-avi.exe

http://gsf-cf.softonic.com/001/9b1/.../file?SD_used=0&channel=WEB&fdh=no&id_file=77585&instance=softonic_es&type=PROGRAM&Expires=1472872977&Signature=Ik8aD8dKE6-nIofI4Gz0I3YZV3aYRu4ZJT7s6mv-WiIEvO7HUdkNblhBkfvySr8J6Hs-IhSFTodUTOSSmeoUVk0pN2RD-Mt2bApULVQ~8rSiDV~IV7FlgO9rruys1CmDi1TfiOKLJQCMZ32xE78dFGpqV6qMvNgkPud7KgdDfn4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=Pazera_Free_MP4_to_AVI_Converter.exe

http://gsf-cf.softonic.com/001/9b1/.../file?SD_used=0&channel=WEB&fdh=no&id_file=77585&instance=softonic_es&type=PROGRAM&Expires=1464424833&Signature=IjHj4xCfWI3TbrqSoG-hlypvGY0d4TiCiiRqLeJLWE5uVHKPgn84NFHGgJ8bC58CbDVfsuiuOev9vhSXciQqbYfp3e6Fb5H3fP65PUgqnsw7KHtVrolhmyMeEKaOQGhbnewGu539r8dAb6LPqHBbTYd3kUfWOIt5EFtdHmw1U2Q_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=Pazera_Free_MP4_to_AVI_Converter.exe

http://www.commentcamarche.net/download/.../download-34056110-

http://download1uk.softpedia.com/dl/44b5e1f749a1d6eeba5c23ba964d9627/5221a691/100090414/software/multimedia/video/.../Pazera_Free_MP4_to_AVI_Converter.exe

http://www.programosy.pl/.../pobierz,pazera-free-mp4-to-avi-converter,2.html

http://www.pazera-software.com/.../Pazera_Free_MP4_to_AVI_Converter.exe

http://download.softpedia.ro/dl/e1cf77374cc7feed8d8b4455d7f27947/52087b95/100090414/software/MULTIMEDIA/VIDEO/.../Pazera_Free_MP4_to_AVI_Converter.exe

http://software-files-a.cnet.com/s/software/13/08/16/.../Pazera_Free_MP4_to_AVI_Converter.exe

Remove 9413586_stp.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.