» mswlogo65.exe
Overview
Analysis
File Details
Downloads (457)

mswlogo65.exe

Microsoft Windows Logo

Softronic Inc.

This is a setup program which is used to install the application. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.

File name:

mswlogo65.exe

Publisher:

Softronic Inc.

Product:

Microsoft Windows Logo

Version:

6.04.009

MD5:

66d3b31e2d0ad1488f2a509aaf08b992

SHA-1:

a0ab2e7ef7df05d2dcba481af1a7c2803f163f2d

SHA-256:

c2cbf5a485f8df927a63b0480508a534bcdc905ee317f4ed993e8e1927212d9a

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/27/2024 3:41:57 AM UTC (today)

File size:

1.7 MB (1,777,227 bytes)

Product version:

6.04.009

Original file name:

stub32i.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\mswlogo65.exe

File PE Metadata

Compilation timestamp:

6/16/2000 9:00:04 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

49152:VuV3HfjtkbQvXpPrXhSonl1NY2pGsAaK99v:+3LKQjNHpev9v

Entry address:

0x84A7

Entry point:

55, 8B, EC, 6A, FF, 68, 10, 23, 41, 00, 68, E0, B5, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, E8, 21, 41, 00, 33, D2, 8A, D4, 89, 15, 30, 53, 41, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 2C, 53, 41, 00, C1, E1, 08, 03, CA, 89, 0D, 28, 53, 41, 00, C1, E8, 10, A3, 24, 53, 41, 00, 33, F6, 56, E8, E0, 00, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, 11, 2F, 00, 00, FF, 15, EC, 21, 41, 00, A3, E4, 68, 41, 00, E8... 
[+]

Entropy:

7.9310

Developed / compiled with:

Microsoft Visual C++ v6.0

Code size:

68 KB (69,632 bytes)

The file mswlogo65.exe has been seen being distributed by the following 50 URLs.

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1484680675&Signature=B8zjVuuXUTyNT6GDL4p7ecZr02mRXZp-Z4nPZwbyaXZJo02wGfbZu7XnrlbKW4cWwgcep7jIheaNcUo~XMbfRsziUgE1yw9SaI1jpb0twh512HADawnEITfgOvYlQQY63rxP-BdXWQNHFRL5sYCg2xGs22w7HaLqLRvY2VtYxGo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1477158808&Signature=F5esAQgh~4TH1RYdpsH6O8Nb5CFJq4gKQ~iT3f1EUolB8m8lqnnbuEndDxJBoH57~Otz6DQIEfGjJuQ4SRavlo2pMqF9rnu-9uwbyBU5z933~BZMmT-KHm5bx6dutWyuPhChyJ-kl4G8SZZ2TQV~cO4LnVivMjJwVxYORVcWAXA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1480382405&Signature=bcDb0Y-pHx9HzESs6Xa0tpBX9EiEs7j4ymq47Un1gxNmZjCiwaRIRdrjSKjjQ5rB6WkLctATyI~uwXqHw9TdCVcRrVN5abMPpkRnhLJm51O2O5jX79gHLc6Dbo30mx1qV7FMnZLuILB74g2-J6GdOCVUnCdlPhk2sY0HML-iVaQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://dw.uptodown.com/dwn/eM8yS6x41MIhO-rNHERnInlAf7SqvjqMkbcsHpOd04wqW9qrmz-c7c8jWLobv77KimTvpCGZ_sFK7XvjcTQck62CII0DpAHvuud-L7T-iOVZCL0obxxHMuYsDA-bH8H3/iolXTToGGRxGxN6i9mMc-nyKlOz5pMBEfBnUgNsLtkLIbpMUuxouSHWdAzPJN3vv2naOV5K5t1EHHGFnyxhToufdHy0BOXObKpUb-Ck0M7YQWHKuAki8BEP7Qc9dP7tK/qhXut610HYtuc7TidmejrlNjuEvqgp1wRq9iFNy2jAT5kvQHOI-7qk2h68znfQtcyoj5U2OMytd0wf-B3IGpKM3Z6KJnQNQXcEFkGxfz5Pt5JlMu6R2yeoSNCXxozLTB/.../

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1470515259&Signature=G5X-gDvsILYldpZ4ezE2a8Y5HLzAwHs4b~0YsyCNM2bNfXDu2Yw4fzq5KXH4ezzWjrvjymEcFwEITN2JQBTt~NlQmiFHoCLn45-YCwV3ZfjaIyHm5pmkMlFDQicAldZYoRTU8p~tNGG00UbPxV3HlbpAApdUumglNpmd6TAlbg8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://203.151.94.59/elearning/pluginfile.php/18114/mod_folder/content/2/.../mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1478223660&Signature=FTavznmsvDSMy1xv7WwoND0DhKqa1F2ZrBffmNVnP~TcqrF3S8geTGg8inWKkSaNPunQez-AW391jEy7yZyn--0ZcQF25ivVhAwoc2d9U2Db7Szd~PSW20z~dDLDdUn5l31kRb8b5LCcy1xf-e14WEGw5omyD6c72cGbSJ8RRJc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1485477643&Signature=VAtQVlSt9Vnd2UtPYpOunXz3KzJE1a8TvEWGZtDNkg5RSBC7o~2VKQAVkUEvzyehqiZjwANt4gme7YiOBJLkSxH0Y6qAms11isjqzsGZe13hcfq92cmPoFS2fWW6VJLYh7qYaAL3I1XWXOXbmaJlFGfqvqETHceubCbs~VN0a98_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1479885339&Signature=TJBWcR6WU1oI6K1kwDX3fFC0goJUbBvOcw7Go~gC1ah8E54eLprcMhr0JxHgt-seLpPSnBPS5a8nAp8PvVw49j4hndiRDbOvqn86h2m2NCocvYDGckafrBMWXeIPBiY~zG1hfhti~Jt8bO3cDtzJZ6Erdrkdx-K8Tl0d9gkk1vA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://www.sp.poniatowa.pl/.../mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1480456956&Signature=Mu7YeMxJYBzpZoLqGKKgqnid~MpC6qvyF9O-ChbQrn1OvFFWWQSmSA6k08X30UlULSiFcarbbzQxOUtdwG2XLcQyKO~1AqTo92xWBHRlVQ-xYzuSoM67QZ6s-VwUCZmNT7hIAHst-5XIRcHmGk8hd-kunmaxGrhpqjNnzsJFLvE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://dw.uptodown.com/dwn/sO_81Lh5EJ0Ur7q2iKDCY87mrvdxnHyOiogyZzv8LXx8ow3QzOBXMvaBRZsiyhagT1kM9TVt8LH9kG51b4V13szhgFVNbdxzJ6LDfqaQdiuDMAlzV9rrEa2IdLK2Zv5n/T-aXBFOLKYtWOSQDAha3h1nzn39qYUhqRxO9xXZg2dzLF2kM3G1pn5AaTx_5IFAk-C0WYprAv7PLjMlmprhDszGXaDrPpnV7ZCFq5ToJztAHF1hj4aHYYV4zQUPns3XT/.../

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1485657889&Signature=CoZM8CIXUNt5axkqsIBA22q0C9ZjWg47YyeHl7gOqfafaIUxvCgvmg0LPjsyfE~7b-BF-SP1zs-jqsGMdaDE6eVdkSyGKTe4SJtozGxgY6TqE2Zl8WnR0DWp8BUk1~1vBVAu1BzzgV2M5pgIXWLGq42nbLsW1b6i1xHarTcyXD4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1486523029&Signature=iOXRCNfCB037zKUPjX~akqvJAg6i~yBgZHwWExwHy9eMPBJ~LuclhGT8bsrYfaFaNSr58vxyvXmXlrkDVyRWu96~Kg2ysJDWbpuLJbWyJuev-HnWsCq~DNyvZ7BpYgjjYEcX052BUCxRHRbITeA2dS~4tRL5tkTCJtGYi7yrDFM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

https://dw.uptodown.com/dwn/OAtWm1zo0aAi35RtxoBRNTf4z2r71TIxtWvQBLocP89KgGoAiflYMXi-61Wg7NFbKxEWxNyQsiOsWuluJDqCcEyy1CD7kZHT-4YJRQuf_3MaL1oejZxFe82Hb-xJhT0u/CxEfWLGouM4XrF0zNx1SqUr_9IA1x_I4RdvYSerUB0JV-01RZeNvCk2s0Iq3nVpFi8B9N9UyNsDW69VeoNWaDKIm1LvRQrWTwHAg_1dJh2S6CdPDYq1FfRIZe0OpPRLX/.../

http://www.lo4d.com/get-file/mswlogo/.../

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1478735220&Signature=GtrMGCrxZNDkKeqG3JHQxDMo38W9WyAky0ycLG6LdoOMwGqQgc6FdjXkKeOk5TfKlGqMfTXOE1OUZv-Qpgok9hHHGFPZv70i2UE9Awtgiy8lzT1bNLFZanepw12rF97v6nAyTe11FI07lItGsjYTgPkyjxzi26k5a5UIprlP9t0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1482277753&Signature=P~4SJcv4teCENDtC1r9INhiwSL8kkgoyhN0QiVXZsJ9KfPo992JFQW7B3oPsX2Y6H9hFi7I89Z3n0VEwxE~SfYKq4uKaqq0IFzpdCRRUTD8OCXihLGnAprfFnBuusa-dcCyxSzLpQXQBOTjdn-Yu~WjU1i6uqD3HDqjiISbWUZE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1459945587&Signature=hWG-xd7QZsSEuCYAvLV4Mwa2tvs9BdRnGaMiDIkrdvxCWDJ4ze4812pMW1B2PyEwRNwtTUl4VCBrAlN6A~oWpXXpHfe9DGaNmKh9uYa4uzlpcRlLsCBh~-kHle9BAzeAlTG5J1K-yhdLyDYMfcadEhHc7tdhkmorBUH4xChmZNc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1478318722&Signature=MPxZe83ff-BcwDy2dsMKlwxUu5F5SlX3tcdWIcDSIzAggpWMhlV4CY~2kYqlV1eqrMjgSZ4PuetEu50KnGPnSmh9utj-JQUjF2CmbLkbQsKnsfYCSuLrdnAlXpssWpp2ZmBaqZJnmCh1kl~BK4WlAqR2ndJqt5m7LfZrkU2kgQg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1432404100&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=fsmMaIb82IniOcjl9Fs2IfIbiVmMwLUITV8jyo8EfavDp~kJRXYtKkyUTFQ0qZSvINHWR8GyFS6Qn3vtfLXGdsaK8nZm4wtE79cRh4VGerb2uCIRFLnvHErHYvLckcu7F57Oj5g-gYoA4ik15dsJ6pN-33s7SjdSZaw2bWIpptc_&filename=mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1485795667&Signature=G7pYn69BFwlMSMFpoYhnDLtkEACjSxrlD~y6bclLAwDX4cQzlZrqyFCRWJpL-WGMYuGe8d9WwzYXKe2-~QhzNgn8PsshdByYf-I-ba9kbQ6fAqLHyuMJDX0sytzfNe4lx6-1hlqnOnF9Rw6XnBY4Cz5Ej0NtWu~VDSzSjAYydSY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

https://api.edmodo.com/files/.../download?f=ba6620lu1wrqh84lnpfc854pr

https://dw.uptodown.com/dwn/d6gMhF6tpTta2px3WUDv0xvtUVvWrNzGJKNPLG4idoVBUIm2aK33r_TW1SEH5pdNCq6SJG2z_AL2YFqFZJJBK0wElcA3slduc9i96D5jLPKBkSr6rIZKIdQx6ZFxSek-/w1MVwwk8sysKElTwtAcZ7mXdyXkqz9hu2MXnHFSZAPFMbJTe5u7Q15vgVAqQZjRoDiQJS8vIUrwnQhtusigjiMv3_dGMQ6YSF2avqwMFx1l3B94DsJXYHkqtyiah2DvI/C2zkKY-PLQjDEgoJTcygAatEuEEKkTnGzkkMKXjtXq6E2SqMV96r-MT9BssjxcC0wO86NxQTD6JjCMTAYsQXflNE5We9a6KsuEPfnxS-Z8xwnznS1TCXGwGM8Dy9EjUw/.../

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1453678511&Signature=ISY8V1coeSvFWLPpMF2NHrXxbXtLDIM3URSjPDAaJstAzO8584cL3q2INZoDTnT42xFWerw5pFtbdCj78jSuix0mLks2sQQk3h7Xr0IX~yUce2QUM1-yIxsB1eBSmoKW68LYHlOM~9pN8OPsHDO4A1bqSiL-HrKVGaJ5USQ4bzs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1425611950&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=ALOcsRLuMwjgKE2ZoBEyBsb0xXemRz9EHljne4CtgPRYw~UYtiUtDmZpABa8KRgDmFlQPK~qthkkRQA-PapVSLYa9XfguFSTtftKX2WAMv3Viys1FvFb-ejNMBN5mSNOSrRdNOyx52dN7gnvrI1Z~lRkXE62nBtchRWqNBmkZ3g_&filename=mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1488049244&Signature=drhkyaIseV9b2Nh4C18v7sEb~l2rMWkJRt-MjgV5NCIDbzk45-YIKjpeyaO8rsmCeIU4IHYFZIeGBcnuajKQZI6x6RRQJqnCc6xylX07ttX32wsPDbcbqtEBw4kWANg0enCsymEEFvfb~3SAuBv1cQO0~7T4a8pItRAYCqZ8mK4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://lon-01.lo4d.com/files/.../mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1484519356&Signature=Ru5x5BtO4A04ufmY68wp-9Y3q2HGj8peO9ZTuRa2gSU8mGbyM~811lv5DCSQDAmjMdX1BBTbyKE2q47SzGaYbi5uyDlked8wiGnV8PewoRsQvnt0kUcj~5CdrZCBShbg2Ih014xky6izr4cYDO0DNl3sPSl9t14NMvossLifVHw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

http://gsf-cf.softonic.com/a0a/b2e/.../file?SD_used=0&channel=WEB&fdh=no&id_file=73791&instance=softonic_en&type=PROGRAM&Expires=1468869764&Signature=gRtvg8fRv5yXxUTRpavIncDAf5UBhb5ctx5qTF0GVyEVJ6dLtLpCn7IBfGNOj9PMYQ6T9I6ai4tmCt8Ln0fAK9YQolZcJhJ9whn81swYja-a2M~itSrqzabCM53JW5~Az3SiQYJmGuazDuzujMCKg0QyX4Wi2~Sy1kShx5gycuw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=mswlogo65.exe

Latest 30 of 457 download URLs

Scan mswlogo65.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.