» fsresizersetup35.exe
Overview
Analysis
File Details
Downloads (26)

fsresizersetup35.exe

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from www.ranchsendgift.com and multiple other hosts.

File name:

MD5:

a4f825165e45caee048aea0d8f42b030

SHA-1:

806b49d064289dfd3c019001f7981728bdb160f0

SHA-256:

b16bde588f7193e14059f07c431477a5aee499c95a5e6d68dd4502b08f53f8c3

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/20/2024 12:54:13 AM UTC (today)

File size:

1.7 MB (1,732,941 bytes)

File type:

Executable application (Win32 EXE)

Installer:

NSIS (Nullsoft Scriptable Install System)

Common path:

C:\users\{user}\downloads\fsresizersetup35.exe

File PE Metadata

Compilation timestamp:

6/6/2009 11:41:48 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

24576:Ig+UwdeEZcM9BPiMm+aLT+tUhcEm7oy7UnNUZG9jt7S4VoTNys4klQdl+hpg+hBY:YcM9BKV+WxAojB3kXNidcJBxw1R

Entry address:

0x30CB

Entry point:

81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 38, 3F, 42, 00, E8, F1, 2B, 00, 00, A3, 84, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 30, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 80, 36, 42, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, 92, 28, 00, 00... 
[+]

Packer / compiler:

Nullsoft install system v2.x

Code size:

22.5 KB (23,040 bytes)

The file fsresizersetup35.exe has been seen being distributed by the following 26 URLs.

http://www.ranchsendgift.com/OOyCPBbFbha32Yr_F61cCcXggxe0qC3Qf2oD7VExvyTonxyYJXVeFGIkwVMDmOCsf5N0VMfH6a OhTMWhn2Ag2koPkBaU9XqLU2r_tqrCxOoe3lAf9uORL23v99KWUcb74hmkIDUKW4MSIrySm4V92Zh_VAg6ix mtOzUjBo44G4vJIfIMHDbMKGTchANZmSOXIWtk6Mhy7RWkQJNaVGQAE_avKvNw==-GzMAAATEbbH9QQxNjAYfkmGCTfwFESZywF6L6ID25joP1I2Bvzk8KFCT t7StFrH1 cYcXfKwgM=

http://ftp-stahuj.centrum.cz/dl/3fd20ae979224ea4e4619563070388d4/5698ca4c/stahuj/download/software/secured/f/faststone-photo-resizer/35/.../FSResizerSetup35.exe

http://www.towerbitscenter.com/y_fX8mLK3bF4UH2rxYpqdrwfsdKKJ9UNXXYlxKEN7dO2pvCT cxjqiqYGjwmfkzzH7IKIcKCh0bqJtQY_IKq3tYZM5tacJmpl9yLdU7 2wfJZhGIN3dlOzZV_YIV0FwyFHQTaSVLEACzji6KkbBMnxdfVdjDDNRa4tkeZNKORDRTfGJebX7L2Bl2wHmjnKSdUZmOhsPZf3RKZBA oADMJvNm_HCGAYMrO8rXEg2AcV9a4lnUe6Q=-GzMAAATEbbH9QQxNjAYfkmGCTfwFESZywF6L6ID25joP1I2Bvzk8KFCT t7StFrH1 cYcXfKwgM=

&onid=2192&oid=3001-2192_4-10319476&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=digitalphoto/photo-editors&topicbrcrm=&pid=14455139&mfgid=6245321&merid=6245321&ctype=dm&cval=NONE&devicetype=<!--esidesktop&pguid=a2227b89b73c91a09abc11c0&viewguid=fPyG-MGbqObJy29yU6SEQIGMN5huhbFzyz7U&destUrl=http://files.downloadnow.com/s/software/14/45/51/.../FSResizerSetup35.exe

http://www.towerbitscenter.com/vTtaCQUEYuy8j4Z6 h6UCWGKVToRJrUhNOjliXgN4HUyWMYIm2daWdbUM2mFT_bft5TJx3TXC78J6cMz2ZDIqd4rwDDpU3JogosaqLTBZ4Vtakk9HJY1xV4EZFeT6i6SIXEdJ4KgcU pfvEsmYtNzQSpQRmkWY6heNwUEl1BlTPqgcN7eISb7t7zwE6dI1B0y3C3oH6YnQuZ3g5d_jln8AjEBoWAdkuCW65mhrgjnKM5fKyPg c=-GzMAAATEbbH9QQxNjAYfkmGCTfwFESZywF6L6ID25joP1I2Bvzk8KFCT t7StFrH1 cYcXfKwgM=

&onid=2192&oid=3001-2192_4-10319476&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=digitalphoto/photo-editors&topicbrcrm=&pid=14455139&mfgid=6245321&merid=6245321&ctype=dm&cval=NONE&devicetype=<!--esidesktop&pguid=4dac844a8f2059112b220f95&viewguid=fe7g3dsoPWRNZ9Dve95oZtt8KykdOyYTt6lC&destUrl=http://files.downloadnow.com/s/software/14/45/51/.../FSResizerSetup35.exe

&onid=2192&oid=3001-2192_4-10319476&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=digitalphoto/photo-editors&topicbrcrm=&pid=14455139&mfgid=6245321&merid=6245321&ctype=dm&cval=NONE&devicetype=<!--esidesktop&pguid=49c44bd51be338947e6146bb&viewguid=frOFR@m7-iVd6lGHRX3JnbPc2X6XFjT50SUk&destUrl=http://files.downloadnow.com/s/software/14/45/51/.../FSResizerSetup35.exe

&onid=2192&oid=3001-2192_4-10319476&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=digitalphoto/photo-editors&topicbrcrm=&pid=14455139&mfgid=6245321&merid=6245321&ctype=dm&cval=NONE&devicetype=<!--esidesktop&pguid=522feddf0c902405875f8cc2&viewguid=fba7wLt8DdPd9w9WS@9BTrJ75@E3FGWMaiZq&destUrl=http://files.downloadnow.com/s/software/14/45/51/.../FSResizerSetup35.exe

http://www.towerbitscenter.com/QefbvX65chXZpzprqg3blKf6ZCFu3bVtx8f9WjYI93E4d0gZeA2vxI44OFR5k2MR6BWLZLLwFScVVI3loadcztozd44ooOVwNKWfxo6rUbG80c7I0Lgpk4Ta89pEVhEFcuYxGA4pTuqsKskhg9rSnf5 hmqEqi8spMCSFZjbvGxC4kDS46wGry7vLNsdvf_k3tOmQff5Jjjdvv8Ubkh22vvguBiAcAoQ_L5M9JjauSYhGfUlsAzFLlSuBwhqsolMrm28ldseGn0kNktVcY48ZLFRNVtNqjNvIp5lbsrebTVkaE6dYqQ2c1sPmN3mz2G 65H nOgKBY9IZrQycAAoFRhh4fMs 8vsaldyDblkqWoHl lm1_ZM8XB44lR4LsJkmT8jD30hV68zPsq_Ho6Lni58Y9TONys1x 1AA78206DvVWXvrvSZFHzeTB5796ZHgT6KOO0qiUhhiefVhtlCOM7wuX1xXiaedmbrRZ01uzNkXyM6kw92GJnuioEPpLjAvB2JSvda9y02fZLj1FRRNyL1fe w1vmLdlNdUbxHLAQluCHB7TZdri_QgDP8q0S18GQtGl8k-GzMAAATEbbH9QQxNjAYfkmGCTfwFESZywF6L6ID25joP1I2Bvzk8KFCT t7StFrH1 cYcXfKwgM=-e

&onid=2192&oid=3001-2192_4-10319476&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=digitalphoto/photo-editors&topicbrcrm=&pid=14455139&mfgid=6245321&merid=6245321&ctype=dm&cval=NONE&devicetype=<!--esidesktop&pguid=0980a3bbd6623bbcf464e839&viewguid=g@h@z2KX27rNABYX5whhzCq05KT2PUOuReAz&destUrl=http://files.downloadnow.com/s/software/14/45/51/.../FSResizerSetup35.exe

http://www.ranchsendgift.com/MfYjpV4T Yc lyRMEA1CmMqmc9kaC6vDqt5Z6meuO7daVGVHdEkEYxMCNQ4nCQGc4CF3yEiMmI7QYDDXYf5nmUDab5t1q ASBxuMaYZ2zpnA7l7mp5VxeAkT3jDjHL1MlJE6rnXM PvamLo6keG1DbhMgT8q6iPa1wuLP4CpDFVaE7KaUlfXVzZ1jAiBTx98Kmy73DXxEexlpEZ_6b78uOGr4jiY3Q==-GzMAAATEbbH9QQxNjAYfkmGCTfwFESZywF6L6ID25joP1I2Bvzk8KFCT t7StFrH1 cYcXfKwgM=

http://www.packagehostdownload.com/HRNqLxScy_PZoS6TonUVXJjw57NkDPK00FeXqtjdcOclNFgoKEvInL3_37C8pp16Ct4cxeC8NVcmnw4g2Ju1mJj VcacYfnSjZ113G0Ya3SaOJSzf1ltgWDk_dV4QRRBKZ8CSjKkYUjkhwi2rISxOWKrUQOb6KHhFWLvXFgJBKS 486WvlM8767_oJjvJ18mPib4zmGxmKpGDNkC_xiW3ZCYRNKdDg==-GzMAAATEbbH9QQxNjAYfkmGCTfwFESZywF6L6ID25joP1I2Bvzk8KFCT t7StFrH1 cYcXfKwgM=

http://telechargement1.pcastuces.com/temp6bs2/.../FSResizerSetup35.exe

http://www.ranchsendgift.com/p6JSeZFZz_D8PSdvtWGtHr6YexGXhvbKoV3qeOdZts6vDOlf YPZDyRnvGOjQhjwb6lLi76w pCMu_8pFZhxRMtQuKMosEtqaxZhRauVkZcJuFX47pYhl4BVB9xMuJhV_TyWuzFW2DH_MFCxC6xTIrzyatm0q6GKeegGCBg2 USOOKrCEsyM69i1DWdLcIvKKvwdAmOkW11WNEaie_4jcj XWNttsg==-GzMAAATEbbH9QQxNjAYfkmGCTfwFESZywF6L6ID25joP1I2Bvzk8KFCT t7StFrH1 cYcXfKwgM=

&onid=2192&oid=3001-2192_4-10319476&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=digitalphoto/photo-editors&topicbrcrm=&pid=14455139&mfgid=6245321&merid=6245321&ctype=dm&cval=NONE&devicetype=desktop&pguid=ca1a64c0861468add66097c5&viewguid=aSWysTeZhuFeaVRiuOGOJpayvqdQHqS0oxXC&destUrl=http://files.downloadnow.com/s/software/14/45/51/.../FSResizerSetup35.exe

http://ftp-stahuj.centrum.cz/dl/24ccf8679ebe7a7b85aede07bb15e017/5683acad/stahuj/download/software/secured/f/faststone-photo-resizer/35/.../FSResizerSetup35.exe

http://r2.computerbild.de/exec/r2r.pl?m=w-cobi;u=http://d.computerbild.de/downloads/.../FSResizerSetup35.exe

temp:FSResizerSetup35.exe

http://download.freewarefiles.net/.../FSResizerSetup35.exe

http://files.downloadnow-2.com/s/software/14/45/51/.../FSResizerSetup35.exe

http://www.faststone.org/.../FSResizerSetup35.exe

temp:Getintopc.comFSResizerSetup35.exe

http://files.downloadnow.com/s/software/14/45/51/.../FSResizerSetup35.exe

http://software-files-a.cnet.com/s/software/14/45/51/.../FSResizerSetup35.exe

http://software.thaiware.com/download_url.php?id=10874

http://www.faststonesoft.net/.../FSResizerSetup35.exe

Scan fsresizersetup35.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.