home

hpdj1280_vista_x86.exe

7-Zip

Hewlett-Packard Company

The program is a setup application that uses the 7z Setup installer. The file has been seen being downloaded from whp-aus2.cold.extweb.hp.com and multiple other hosts.
Publisher:
Igor Pavlov  (signed by Hewlett-Packard Company)

Product:
7-Zip

Description:
7z SFX

Version:
4.42

MD5:
71008e44dc159b25928ecfb4b1ff0a3c

SHA-1:
beb07025170d5753fe39f6c27f0eba25c48a054a

SHA-256:
2f6d79e20447d2d2757007954615acf4564f1e250ae775eb50ff807fb307111c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/10/2024 6:57:49 AM UTC  (today)

File size:
7.8 MB (8,174,480 bytes)

Product version:
4.42

Copyright:
Copyright (c) 1999-2006 Igor Pavlov

Original file name:
7z.sfx.exe

File type:
Executable application (Win32 EXE)

Installer:
7z Setup

Language:
English (United States)

Common path:
C:\users\{user}\downloads\hpdj1280_vista_x86.exe

Digital Signature
Signed by:
Hewlett-Packard Company

Authority:
VeriSign, Inc.

Valid from:
2/5/2007 1:00:00 AM

Valid to:
2/10/2008 12:59:59 AM

Subject:
CN=Hewlett-Packard Company, OU=Hewlett-Packard Company, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Hewlett-Packard Company, L=Palo Alto, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7ADE0C565B1D729B61C6DF9195897E03

File PE Metadata
Compilation timestamp:
5/14/2006 6:24:40 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
196608:54GCkK1AAn0ThPMs20Es5Et6mY3VLP2kFTF6+e:JCkix0TFPzE6mY3RP2kFo

Entry address:
0x18136

Entry point:
55, 8B, EC, 6A, FF, 68, E0, BD, 41, 00, 68, 9A, 82, 41, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, FF, 15, F0, B0, 41, 00, 59, 83, 0D, 04, 5D, 42, 00, FF, 83, 0D, 08, 5D, 42, 00, FF, FF, 15, F4, B0, 41, 00, 8B, 0D, 74, 0C, 42, 00, 89, 08, FF, 15, F8, B0, 41, 00, 8B, 0D, 70, 0C, 42, 00, 89, 08, A1, FC, B0, 41, 00, 8B, 00, A3, 00, 5D, 42, 00, E8, 1F, 01, 00, 00, 39, 1D, E0, 07, 42, 00, 75, 0C, 68, AF, 28, 40, 00, FF, 15, 00, B1...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
101.5 KB (103,936 bytes)

The file hpdj1280_vista_x86.exe has been seen being distributed by the following 13 URLs.

http://whp-aus2.cold.extweb.hp.com/pub/softlib/software8/COL20116/.../HPDJ1280_Vista_x86.exe

http://whp-aus1.cold.extweb.hp.com/pub/softlib/software8/COL20116/.../HPDJ1280_Vista_x86.exe

http://whp-hou9.cold.extweb.hp.com/pub/softlib/software8/COL20116/.../HPDJ1280_Vista_x86.exe

http://h20566.www2.hp.com/hpsc/swd/.../obtainSoftware?url=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F667477617265382F434F4C32303131362F646A2D35323434362D312F4850444A313238305F56697374615F7838362E657865

http://h20564.www2.hp.com/hpsc/swd/.../obtainSoftware?url=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F667477617265382F434F4C32303131362F646A2D35323434362D312F4850444A313238305F56697374615F7838362E657865

&onid=2116&oid=3001-2116_4-167769&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=drivers/printers&topicbrcrm=&pid=444009&mfgid=10010829&merid=10010829&ctype=dm&cval=SPIGOTWIN&devicetype=desktop&pguid=f814a14c1bd9efc61bf9e438&viewguid=Wd4Nf0o7Bwgm@qdlH--Syrt2PTsPAO5JrDvg&destUrl=http://software-files-a.cnet.com/s/software/44/40/.../HPDJ1280_Vista_x86.exe

http://d2.driverscollection.com/4adfa79134a48/2a788305dca9a34e0a426b641de790174e06e0071601d819d005161229616dd79edc1b8911e35ca399bc5a7229b424da540d5b84/0/80/10/.../HPDJ1280_Vista_x86.exe

ftp://ftp.hp.com/pub/softlib/software8/COL20116/.../HPDJ1280_Vista_x86.exe

ftp://15.217.49.141/pub/softlib/software8/COL20116/.../HPDJ1280_Vista_x86.exe

http://ftp.hp.com/pub/softlib/software8/COL20116/.../HPDJ1280_Vista_x86.exe

http://files.downloadnow.com/s/software/44/40/.../HPDJ1280_Vista_x86.exe

http://software-files-a.cnet.com/s/software/44/40/.../HPDJ1280_Vista_x86.exe

http://download.driverscollection.com/6e9cb9da8c24/f15738cb38b1f6ac6d4d32cebb29ef9ed3a1b11704a91902809ec45a8a082ddc7bbbe18d83cbc8b6d904d74193b9bcbb4fc49008/0/80/10/.../HPDJ1280_Vista_x86.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.