» girls1280x1024_setup.exe
Overview
Analysis
File Details
Downloads (456)

girls1280x1024_setup.exe

ScreenTime for Flash

This is a setup and installation application. The file has been seen being downloaded from gta-san-andreas-homegirls.softonic.pl and multiple other hosts.

File name:

Product:

ScreenTime for Flash

Description:

Screen Saver Installer

Version:

2.5.2.0

MD5:

b78af47017670e4d9329a8fd1efc15e7

SHA-1:

86877ded86683bc87f9decc388fe392393e5c6ae

SHA-256:

debe281bc020ff0dcd0533f2b3b2444f23259bac46c428acd58dcb88c4503c67

Scanner detections:

3 / 68

Status:

Inconclusive (not enough data for an accurate detection)

Analysis date:

4/19/2024 4:40:04 PM UTC (today)

Scan engine

Detection

Engine version

Comodo Security

Heur.Suspicious

20436

VIPRE Antivirus

Trojan.Win32.Generic!SB.0

35960

XVirus List

Win32.Detected

2.12.27

File size:

1.4 MB (1,483,503 bytes)

Product version:

Unlimited

Trademarks:

ScreenTime is a registered trademark of ScreenTime Media.

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\girls1280x1024_setup.exe

File PE Metadata

Compilation timestamp:

6/20/1992 1:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:coU70d1oexTrilQ2VpgTT/r0WmfHvbOH3Zpp8axDLuo6t2U:covd1ogz2VpkbryPaXZx56t2U

Entry address:

0xB5001

Entry point:

90, 60, E8, 03, 00, 00, 00, E9, EB, 04, 5D, 45, 55, C3, E8, 01, 00, 00, 00, EB, 5D, BB, EC, FF, FF, FF, 03, DD, 81, EB, 00, 50, 0B, 00, 83, BD, 22, 04, 00, 00, 00, 89, 9D, 22, 04, 00, 00, 0F, 85, 65, 03, 00, 00, 8D, 85, 2E, 04, 00, 00, 50, FF, 95, 4C, 0F, 00, 00, 89, 85, 26, 04, 00, 00, 8B, F8, 8D, 5D, 5E, 53, 50, FF, 95, 48, 0F, 00, 00, 89, 85, 4C, 05, 00, 00, 8D, 5D, 6B, 53, 57, FF, 95, 48, 0F, 00, 00, 89, 85, 50, 05, 00, 00, 8D, 45, 77, FF, E0, 56, 69, 72, 74, 75, 61, 6C, 41, 6C, 6C, 6F, 63, 00, 56, 69... 
[+]

Entropy:

7.9485

Packer / compiler:

ASProtect

Code size:

542 KB (555,008 bytes)

The file girls1280x1024_setup.exe has been seen being distributed by the following 50 URLs.

https://gta-san-andreas-homegirls.softonic.pl/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxANHJz92xUyXmfoOJ6BMU4k899QsMLahyPEwBRyMIexOtPQHrctH/.../ky8RRvqYBX8w2GKqaiDhcX0ZFN3zETJJOwUYng0Hsa8f0kkKAsqfIeHONHOxuj81zIQZngx B sfTp3CXNg==

http://gta-san-andreas-homegirls.ar.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fmqCJoaSnmZg=

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_es&type=PROGRAM&Expires=1486282227&Signature=LQ5mcecJ7P0Yc0BEcajsBKZDyabTil9da5m4A0Pg6j8W3lgaxMIXdyh2GiQKwn1GqP7nGUtXmFEZRDVoW1dUD3xRlCkl3Y1bom0sp53gv13mz0fsVJnf-5fM3qNpri8pE~bge5dUuDcxPeaJAKXYSLCg~KhzjDkRiReL6h6nkMw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

http://gta-san-andreas-homegirls.ar.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fnJ-Ko6CfkZc=

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_es&type=PROGRAM&Expires=1482511475&Signature=ZBRIWnKxoIRkADr7bmm6qCef6lgGeNPMaQCfpmbORQMzFFa47816hRWTWf7ai1Nuck6e4NWef9xY4wzbPANWXaiFOe0d5WNuFVkvcQvvwqdQlI6iTx~HPmU9bUcRP6yZtTUZGmzQFfK~pvT9uWjksh7R9yERoY2ewBtbHkdoDJo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_en&type=PROGRAM&Expires=1479933453&Signature=UeDM862C0mnAMO3Qq~9LcX-WAHHCBWW8EkYs~53aZpVv6of9Lk0udvKQPn83mPw~5tv70Rb8oMTVGWNOAEQHL9l1KUK1vkbr7lae~KsACbiuhXQcpWe-Pg8EgZGDb38gRgNQd76CKT5TFpPh5W0A5zQfwEfoRhayzUl2~yGjULo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

https://gta-san-andreas-homegirls.ar.softonic.com/start-download/.../c9779e026448dbc1c52a76abbb628b3d

https://gta-san-andreas-homegirls.ar.softonic.com/start-download/.../b69af805e9048e529e5740b7a8375f61

http://gta-san-andreas-homegirls.ar.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fnKCJoaKol5Y=

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_en&type=PROGRAM&Expires=1484784901&Signature=NM~xk4xRDDc84McMlaQmJ3q-0wJfEB9XF10vCkOHmEk61VoWVwv-QJQMygVHrBPJt4lfAzJ14ZZw4mpPEAiiSx7BzwLQNF0h78Kw85WmewkLP2LYgOQoOa5tXueVxF-EriPq-EmuNbRwtLu59WvpG2NQ5YziUaUBhlynOHVkyEk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

https://gta-san-andreas-homegirls.ar.softonic.com/start-download/.../b69af805e9048e529e5740b7a8375f61

http://gta-san-andreas-homegirls.ar.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fmqiPn56llZs=

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_es&type=PROGRAM&Expires=1486979786&Signature=RBwFBBZq5K2aN-H8MJko8KQGN02vxxahn8BmprqpV05VwgbaG0PxcxAyEwCoSb5L7g7nF4Ocw~pGTGR29TZJeZQhpoU5w-k8eNofv0VmawJ0XVnRUAHra92xhRKXBKodBLXAriFTq1lTfzWAUYkWmPFs4Exw4g4JaGmrCtf~i9k_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_es&type=PROGRAM&Expires=1480944223&Signature=C31Dfn68bUuMArElUpid2bjx6KsZsIM7lTxEbItcZUAQJ-lM4Q5WXL3jk-oMMOckAUigRohng38jLPReaPbsNk-JFZ55R3Aw~R6e7G3vK~ZN5PPPtAaKL2sRntNvUW6DuDnqc~ZnaSewvyrdXC80u0SUaSZ-f79xzzNXlz3GLYU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_es&type=PROGRAM&Expires=1463724977&Signature=D7KklUK92jUlexuNkVOaNJQMYo0-SHgi4MkE9Fo9lNb5SztVWRB4kCprHGk~-b1hj6V1Rfu4U7awgW~LUE-rivXgjcQgiuOgiI-qccqR2OSWX3qhbVM~u6Hh4w8EhqOZb31jGyTRNN13SAqh2Dvt5Bv2~5ae9-wjtcckvtjl8eE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_es&type=PROGRAM&Expires=1460344014&Signature=BBi4Bo4Nu~HmeuomYumLM9URLvlMidYql9bfhbJULGVvY0MzQlJVb~67RLFycLRAnBXnzcFyfdepJiGeHs5d4wG8zXBU2PyOkChed5G7mO1s4vQPhBvj54e1RIOJczQMqgB-N-Imiby8Ron8KSSd9Ps7Uzj4Sw4Cd-DgIc2EA~Y_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

http://gta-san-andreas-homegirls.ar.softonic.com/start-download/.../c9779e026448dbc1c52a76abbb628b3d

https://gta-san-andreas-homegirls.ar.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fnKOIoJygkZg=

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_es&type=PROGRAM&Expires=1477879949&Signature=OsG9W~wzh6R3pbJ7yzotCCQBOiOFkTxe0YV5tw-KP5FFOhZ8ADeat4AayfqRDUxrSOaiUPE9ctMcTSwy5n-QmYaDukOLLkNMxZkQD0WGv9k4UG3MEirvS5cbWRohtZ440wf6RRkP7AN9gEJiN7NYRAv7iK-qbKN74Shdn-gNFBI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_es&type=PROGRAM&Expires=1477980893&Signature=UiCFfd~tsY5sitbUkj3jr3tLX3DJC2SRz-wblPR~keYIGvKg8zYwzrAZdEzhGXGFRbU7d4eQxyHV5xfWs1G4gYOZfflycTUHolzLinkT3CNVIuLwOhUdlLtBMafwuICQbAiOv5IbmUrJsFnCyVt8fHiiqAqaawv53q80rTZCZE8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_es&type=PROGRAM&Expires=1430028414&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=IfhGEQZbuyuYC6NeMrsgnumoPOi2ZO5sHG4kwWATDNl7KiuFCEZerOh07uQW0rLsAeRYFHHde-p5M6nQQIXE~XXF3v0BpeJeXM06x7f2nJz9sRl-u88N-Ov6VMckcxz2fE4c0GBGder4GmB1I-3x3OyW0DHAFhaBzBkBN7A3L-E_&filename=GTA_girls1280x1024_setup.exe

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_es&type=PROGRAM&Expires=1437822245&Signature=iNek-gGVlVGcAppFK07LHfj0r4BGjyItqhqiNg9mAc58opcJhYsL8ShBTC6qUNRRud4LGjhJCsNAWQ2jF8v6TUG60IUeXlWUvNdcxsgiwq9xV~7agqVxK5cmTQubm8-wKfNQcMe6ZHqDG146kqx5dWhTJeBVq6C9jXXpCCtDc5o_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

http://gta-san-andreas-homegirls.ar.softonic.com/start-download/.../a82e744e9c9a8e5bdaf98106a45f1a5f

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_es&type=PROGRAM&Expires=1473650605&Signature=fxguMOD-NDCV3CRsp2i8Kq2TzsC3nxZZ6ZVGZ0XhxQb02amBV81qmgP7HFBXUXuLNnhDJqzRSVs6fGcr3qSaUzscPGZrJsJ7fK9old0k~xwts5t6fbYywmxGSXaP5bMKu1C1zKBjWaRyRs2-g2NIHYq6kXGY49Fn6XLeik6MUWA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

http://gta-san-andreas-homegirls.ar.softonic.com/start-download/.../c9779e026448dbc1c52a76abbb628b3d

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_pl&type=PROGRAM&Expires=1478408003&Signature=F7-ZOCQMSHmd8rv-wiDe7L6F6le1eJaHF3td4tc2fzzSxqb05E9ClKjzeJCaNVMgBnli6cbllriojlvGSE-N7Lk1jdqSRQrdsJ20eLdvqemrV3PdaeEWQd7t8FeKGx2rwYyDCcjPyGSvJ~jAtgF3bxAysTPIzx0da-~UPnsSyIQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

http://gta-san-andreas-homegirls.ar.softonic.com/start-download/.../c9779e026448dbc1c52a76abbb628b3d

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_es&type=PROGRAM&Expires=1474816436&Signature=VilIPHtSDXGN6lnC-niKdQ2Rs1JEh4TZXuoCC4QVqci3MWRVmE2sYJyle9iAihqTVKXUUSLug~ai9l0KjT7TxaYeVAVKFyjBryDab~wl4TQFACXaAcbId1urh6HTIrpuld6zu8yRNmGQwksthQ2YESPLy1qjnU5BKcLYj5DCBqc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

http://gta-san-andreas-homegirls.ar.softonic.com/start-download/.../53fab6e555235f86ea393f6989b65ff5

http://gsf-cf.softonic.com/868/77d/.../file?SD_used=0&channel=WEB&fdh=no&id_file=78313&instance=softonic_br&type=PROGRAM&Expires=1474793119&Signature=Dc6JDjCTUti~y~xAJIYJylXlGrCe3HheRihUNfHPQcdejd1Hr-n7nxEP8X8a9RBW~jYutW5IeR3GHxKhAUw5HX6jLBq7HzvrgAgaake0yGYhQdYGgDo17Cr8ebwdoDZ9Nfz5mTrCHQqeaNXOGE3JVrwSC7Cc-8zpTtb9~lak2L4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=GTA_girls1280x1024_setup.exe

Latest 30 of 456 download URLs

Scan girls1280x1024_setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.