» fotosketcher.exe
Overview
Analysis
File Details
Downloads (38)

fotosketcher.exe

FotoSketcher

David THOIRON

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.

File name:

fotosketcher.exe

Publisher:

David THOIRON

Product:

FotoSketcher

Description:

FotoSketcher Setup

MD5:

7fea2779a727f825ef249d44bdb48a36

SHA-1:

1940448a6912d10b033e5c3fb39511917d5a7316

SHA-256:

a27afa349fde120ef1b2c19b97a13fb2e96381323a1b3b427a1a985ced0fce72

Scanner detections:

1 / 68

Status:

Inconclusive (not enough data for an accurate detection)

Analysis date:

4/19/2024 9:56:50 PM UTC (today)

Scan engine

Detection

Engine version

ESET NOD32

Win32/Bundled.Toolbar.Ask (variant)

8.9431

File size:

11 MB (11,494,218 bytes)

File type:

Executable application (Win32 EXE)

Installer:

Inno Setup

Language:

Language Neutral

Common path:

C:\Program Files\program\fotosketcher.exe

File PE Metadata

Compilation timestamp:

6/20/1992 5:22:17 AM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

196608:nmbafQrqeEmAHsmvx4JDVyqOdGLMs2/IcOfF1i2eMjcpnT0/Q2gJBrSfBMSAx8Cv:tfQ9EFhCJgqOcr7FeLNq8SfBMSAjH

Entry address:

0x9C40

Entry point:

55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, E8, CD, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E8, CD... 
[+]

Entropy:

7.9998

Packer / compiler:

Inno Setup v5.x - Installer Maker

Code size:

37 KB (37,888 bytes)

The file fotosketcher.exe has been seen being distributed by the following 38 URLs.

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1432784767&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=VRohxgYs3S0fC-RrcvTrywsynTuWuWtJX5fPlvnEueeUGcb6pcckDZimFAJOTjWgtlrkPJF6YhZ2R2x4Vz4HWIWu2hZpq7zdWJaZvLTgjcjNPbwR79zkq7xh0DpXY~bljg1UOHI8-eGXTJmOTMjRXdzJOiRZ3Bb3L2rT4AHJ~ng_&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1461296134&Signature=YB1TGlnP2jYpBLKJ4TMHM95PYfWeU7rXuf2GrnZ1MUnGffbQKwOJW7YMKFJkQSy-325FzF2iONzf9m2YNwCiDiIaS4tFzQqO0uFVuEq49hpA1wNeajAoc3yiAqyUqsK8gMOyt~vM4C-83Si3hQgklP5maf1Lt-EWCk1tzxQPl3k_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1480310053&Signature=XPuRYA0zAWiFV55g541db081~FTKpbG~tmlNRSX6Q3j-p8bLReCCzA-7mSoICMkj6o-lQc4rMBoB0fbXWBMfGGfoDaeaSgQDA9fKtc~Mq9wMuy5hDagMKApcI5-rHMSyY6HsnEXYSNitKSKqHm4-Y10ntfXZlqVwMnEqw6DsS0E_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://dc729.4shared.com/download/.../fotosketcher.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1429143329&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=DBEX~-Czr1aE-jg30PN3EPjljJ5Zo6UOg8lTY~9nxPOjB55zDzXaIxJVLkRW0eMACusm9SsZC79Rj-Xypdghj6~7ZRIriR-rN7QV6LFLTmUBHClU2EMu2czUvUQqku1YX4UWVEqEssoiZTAplwQKo6JZOta-MJC7JXkAbRwNjW8_&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1476503912&Signature=VsC1cuo9XVexZWgVYEO2NSyFu-zIXGapeEwS2crjP4hoBsM8tMX9CkRQ5Avhr4V~B0S5IzBbfOFjnu~KNCg-TXjIvWObsi0fSUYMhk-ajRA6y2sKUAw8ae0bSxGQklt7-SFNqPlpWhCrmEaUJvo4B4~KmQoqLNB1MrQVm~-~dr0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1476889507&Signature=Qf0CMD-u6bPAGZaZ64OdxwEZam6By5917~bhV3uVKTAjdtpv9wZ8NNQfiuw1G-NXkDXnR~jYRgD4o4Z7H71h28ltn-oW4LuJWkOVB4~RguxrtUOMX~A5W9jT0BeU2AISK9J-N2ouJ~KjAyS6S3wM-cRCLuuzEkhhT-WwxoiwBAE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_it&type=PROGRAM&Expires=1462757957&Signature=J3CulW3dKWyBI6R-RpBQMmcIRJq~oaussnmw00ZyY8Ttb7vOkWr4lB56Tp6JG8tI55Ydx3N-wYmw1gzt1TDmFZEOfYq5OECBPAWJRW4YFhMvq9zMCEOQbJCnDlDwcLgT0beUlENcTHSai8bvXMW9sWWxMcLApLCQ5lIaSh1B3oo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_it&type=PROGRAM&Expires=1460442305&Signature=YaaUGpCPKnBZ1nlstvN5rbY4d2~~NedCxIebld9kWGWqvElYV0~d15HOdKe6XujcRHI3LcO1mtt-RUHdAl60cvS1WxRi-9bYTpUG6a1-LEdEvBtpVsN~R4BAJ8-cLumD3T7B6geVdCw9SifKFI3BDMwcUCXIGWiHBssvrG4uwgU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_it&type=PROGRAM&Expires=1440562580&Signature=Ups98SJqtJPl5JQIthfvsjdXgE1V~MrKWmzOx0yJideA8Psp4NXhkxWizdWcE59ipw4xto01SK26bSc85Vb7Hed2b20RvSboRpWCW5krVtsqvlNdmOLUPiUQ9w4-QkzHL6aoFbmEOP~4pT54fUIvrPQ7PXQLweHEs04FpAN5F~I_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_it&type=PROGRAM&Expires=1433285875&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=Nj-DiG41B6kq6wp5XGlo0O97ParwjN65sRVlg7yGFWwbRviGJbkA0nMi-vjlczLvk6PwEQheMZ1pMZ7isA-hU8r~98njWzgmilW1zzO8TbjR0abiZMRo66uIZf1va7QnaY65mOyaSK4Hzbh9AidNUoV~cSIzeAXPmTTIfyIWJGM_&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1470726412&Signature=EEmyqlgfbb7usrgyo4UpTLfsK9z6bT300lMgR0KMnFDyX5Qm2AaPfuDuPPj4beRF8-b~PpclnopGRcqv-diWeXCNY4Fx8N-2vuOHZqEcGUHnvYsCFdcxMnQ-RjVxFKSM5-2GX0qcajouOduUxpcnH2CyxdWlZ~HEKtYBCIKQeUk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://global-shared-files-l3.softonic.com/194/044/.../file?nvb=20150125022921&nva=20150125143021&token=0e044a9dcfa78bd585f2e&SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1475480337&Signature=hbz9HIA2UTzrNVToFKWfsl4K8gBAEv6UyM4SnZUCUleHyQBFpaoB9aoiL0a~w4qZv40uPTcg~SNyjTkTMAApRijEwvfbSLxRHEesdgyPWwXH4iXKpvP92RteCTQM3jwS12ERFRY5DLmHRaWU9r~eFi2nVmE3ED28My7XgkpPQa4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1479654824&Signature=G5dcybbXip08kpdxtoSTJb8K5fDzWLHMMpYZbv1rPrXA8zJCjEapZiTBQpi8NMqZ~HucBNXvRZXWt495CGj3cNciPwn-IGEjSMzXWWNeOeY1EZhsTPCsX7S0NNbLs6W-gkti4fdRUpo3XSOwyDRKRjZ1OHTJZ9gINiQcoCF2KvU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1445404879&Signature=dBpoAlitqFrvGc2KaX-p7w3iI605KI7feEFfvsYs1nLRlF4ivQHFKqfCnNWDhBjj6Y3KbQmtsNtqYyEd0voJbRhQcgSf6vb5B6NrTcC0X4OvzS~jgjIVsWhpQCB3T8SvTfYKRkCArDlirzF4~liRKJjKNu1ru2El2lQ1Bup-~cA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://1.csillagpor.hu/fotosketcher.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_es&type=PROGRAM&Expires=1440779540&Signature=PU3YDniZJSNg6ytKTpbh0byhg5kM3nzqbjTV5s-tfEl1l3HJhBjp2DCTVyjGVX2sRI3Kz8vO8~fAfEUnEiLTfMf~tA5Z2cxqFsJWPpctmQZaU-mqll~RgvKVoLHB215rZJVGJVteg5YUOkj0Jz~GeE5jM7pTzcOzTWyCa8LHIB0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1464948175&Signature=ar4zNY4Ea-1VwJ2MfrB2vFpn4xSS4tqGWrk806bFeWoF1MC4Si5ssQxD2yFgC3DJlQfrh5XuUggleGQ2je7R-OIYXYUxvV1iBs9FggYtC6JU-3-Rf4l78ElaE5-Ginz7ug8RgRqFLGOKJElf2yg3b1zSDC0oZhUPBBC-hbp6PWg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1463250253&Signature=NmVAAT-NKPwOE~yo9Tcr8lV3PJG~LxwNLqMyahDtGrUer7K-MG9plQ8qjF~yxwJQeBYyC8BMmwZ1ywRd2yDN7kzhXc6pab0YT5ZFz4-It4POYCOnMBeTWO1-cWrMUYTuMsfS2RveE1-QeeyD35G9sBbfemU1lSHG1F~WWSTIk1Q_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_es&type=PROGRAM&Expires=1459917551&Signature=IdFhrubDbTO6T~-FpAdl0idhwP6GLHE8XEbNrJCgOPdUiB6RmrDvAQ1Qz-czEIECvMqjFZRnUmY3QMj3kc7s2X~ieat1XqDWB0l~vhX2qt3APfAgxUA5r~zhT8t9oLe-ixoSD7Z73iaHtH-39Mrmcnp3X43-dw4Cfn5Rggg0ijo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1463701443&Signature=NATc7G543tLSv5KE6FzalhmC6RZ0jxuO19NeXFY4-iwdC1IWUeXt5ntWSJ3pSKRRQkDrFRTfmhCyEtQ47QJtzOGC3h1nWjp~FQ06~V9yO0xfAcp2uHgxsCQo7ePk5p7iJ9aToLfHKGA3TkM7qJ2~nnjeSwMy6IBZtX2V8zSp314_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1455211750&Signature=e3fVr4bI1g745Il4ozRxK9rrGNx~qXKfxeuQFOyVBga~2RIlGRtznFTl59RWmiA5K4fRQXKdlN~eAN9r6Rbqiw9HJcsyfu0WoTyBifHQ3Q4ndkb0V09IH5nbFyLTTnDQLYFL-FXhH-TmcQRZ-dXa6wnnCKahY4QreHI~CflfHnE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1441243070&Signature=INkZsByKBjf~ak1YReXvROrEqOALUVdpbMiBbapuZRoKZajarxsRREXMCv-S6~PXv9fmiZkvXqdPRaxQkPLtFK97wMywX2G7sQOCcghCIWgaV0EE4wU680UJqnlsjP-wZ1LaGJsto4f24QxzmNYnw0~Jjp1z~45NeeqsmCcQNEQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1458018039&Signature=a3VkBtN219d0~r9VnNuyWmciU7XIA9ohZFUtN9SYYBs5cITgK73abCC9~wuSgRHXG1UPx-HmW00SqHCV2SBdYmP~JcDpdWBHbC4mj7ymYWwbJVR-R9UvkNS8KsbHpng1c2sk28bEtHgHqdO8BbtYl2Qg56YS4hZ6gDVDnKudWkw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1450616211&Signature=RWBvlLbAIJaPwQM4AawHN3Or7Se7XHZ29aC3~WFNEMcJcWPjkD2IfHKrV2Vuw0e5S7crELGvQNXtTzcaQBHUHl8hBARe26YW5RiZRT9W8WPgS5nC9VEdviUAGekVem0okh8SsjXgRqbnLh1Iw0Opc~xlQppKgHFFELo2LL18g0I_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1459730919&Signature=bWLx9Ndwcx~1IFEPux1RzN4Un4FERG6dqcYlAHs~Crti3~PUN1iBl5YhUJU~244LCd3e4C0tQySdsZnhL3Bg-G6arj5f-sdOsat2xIYn7BbCQ3mUAS0cxlIizxf3yA9MBgQIYndxT5qh5e3oLPaF0JUCICJhLwyEgxm6MDy58gc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1440712252&Signature=F9~wg5QxmOECpT8xlauHpp1br7JwvTGogbyx8BXo8XXas76b3ctwa0RaMLUp9JdyifLRwDP0B8nQ49am~jEOirFyqTxJpeKMryWZHH8lzBDLCGmPz30gqw05F~5viT6vak7W9-F5ylxPhf57-sXMK2LCLZY0xEoL2QFO4aQMqA0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1442460274&Signature=SavHAhyPyATo6BcrPrAuDXun1IWH6vhKCcnXj1npP3o-dRP4FS9R2RLxqT~exFoXGImSF0-yb2W41LIhPPHmBDRiSOKRRaG5LPHgOtO3X5owsqgiyEZt2d56zqzRvrxG7DD0jOJz~YYDOrAMsKZetHvmIvBDiD2PDs0i~WMqlNA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

http://gsf-cf.softonic.com/194/044/.../file?SD_used=0&channel=WEB&fdh=no&id_file=66058&instance=softonic_en&type=PROGRAM&Expires=1437503561&Signature=JwFBvrgtrUZkkLfHtl~b6Qxv45cauQkCVjzAZXYZfVFep2TtuaZUi3GPP0Y1YNUA-MqYfANX3YZT4GBjcvRcG9bDEf0sGQNKl9q6BCu8wRvxN~5bpV9-2ElF6BVK21ih2~nKl~S7z43lpCpSDuQkOWuDeVmQcChJ9rjXHeMI-o0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FotoSketcher-2.30.exe

Latest 30 of 38 download URLs

Scan fotosketcher.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.