setupdroppixrecorder2.exe

Droppix Recorder

Droppix

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
Publisher:
Droppix   (signed by Droppix)

Product:
Droppix Recorder

Description:
Droppix Recorder Setup

Version:
2.9.1

MD5:
f5cb6399fef09239479ac8aa7b2967ec

SHA-1:
f50b046e8fb359f1d3948102c7be05ae05332930

SHA-256:
397e354b4defa8acd2846f242f2f7f84aea17539e3a039995e9bff4da98cf7c5

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2017 9:40:40 PM UTC  (today)

File size:
48.9 MB (51,245,024 bytes)

Product version:
2.9.1

Copyright:
Copyright (C) Droppix 2004-2009

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
12/5/2008 12:00:00 AM

Valid to:
12/28/2009 11:59:59 PM

Subject:
CN=Droppix, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Droppix, S=Paris, C=FR

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
42376AC6E64420E972BBC40F8207FEE0

File PE Metadata
Compilation timestamp:
6/19/1992 11:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
1572864:HdQLsrmqumw+oTMw2TbJxQQFXI8GcGFeh:HdQLsK5mwL2RuGIFcaeh

Entry address:
0x9A94

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 32, 96, FF, FF, E8, 39, A8, FF, FF, E8, 64, CA, FF, FF, E8, AB, CA, FF, FF, E8, 0E, F3, FF, FF, E8, 75, F4, FF, FF, 33, C0, 55, 68, 47, A1, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 10, A1, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 9B, FE, FF, FF, E8, 02, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 94, D0, FF, FF, 8B, 55, F0, B8, E4, CD, 40, 00, E8, E3, 96, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E4, CD, 40, 00, B2, 01, B8...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
36.5 KB (37,376 bytes)

The file setupdroppixrecorder2.exe has been seen being distributed by the following 12 URLs.

http://gsf-cf.softonic.com/f50/b04/.../file?SD_used=0&channel=WEB&fdh=no&id_file=38477&instance=softonic_it&type=PROGRAM&Expires=1442871416&Signature=PVlA53AtCRQW9Ntbjy2gNlcMuBKhOmquHSlqWwpfF~JTRUBZKcSdR8a9cw3jcKkYWFIkdka5~2y1TKg1xNR0PIcGpHieuha8vTu2gEwWKpMpwhh5wjtUqmb9A8wYfoQC1f5evP6-C9W6T~uUYCnOkl0-A7QhvPXTES9jbUufnbE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupDroppixRecorder2.9.1.exe

http://lb.cdn.m6web.fr/d/c/a/80b7d5cdd6b405036da288d0002f56b7/5779599b/soft/.../droppix-recorder_2-9-1_fr_13697.exe

https://droppix-recorder.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWtYBgkfBSGVUfFEc9RcKaBZW0TYDv06/trKymKL uRJPrH/6/.../TTzDl72UYqbfCOJAkc=

http://gsf-cf.softonic.com/f50/b04/.../file?SD_used=0&channel=WEB&fdh=no&id_file=38477&instance=softonic_es&type=PROGRAM&Expires=1478151827&Signature=VBEuF-g1fsEy4z2w~o~xIRGnUY7tioQKOsxBqwtNNqh1SaFUeyNs6wI-tLjDEX2BRMa41iHTkV8AXrLqO0i0-j~lzDfi3YXcwsqRLby0Qgbf5vL7qtcB52mHUvA61lTv93mI8CDqbNvojA2ZEhBHv2INlkFT1eIZWCzOPdV716o_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupDroppixRecorder2.9.1.exe

http://www.droppix.com/.../download.php?file=4

http://gsf-cf.softonic.com/f50/b04/.../file?SD_used=0&channel=WEB&fdh=no&id_file=38477&instance=softonic_es&type=PROGRAM&Expires=1478525724&Signature=f78mGrh8OSV9PiOkViJ-PmTd6fmRqI4S3hVftqBW6Ocd9oY-7VtIN21yiK3lduBRPJHhhxU2QLjeYU7ko96maikazI35jGTsLpOlRiUiE9KE3dS1m4BYXGF-6XAfEsuTfWOnM~ptj23bTqm~wmr8HenLDPlg07H0OnB3e30JZvI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupDroppixRecorder2.9.1.exe

https://secure.innodl.com/.../droppix-recorder.exe

http://droppix.com/.../download.php?file=4

http://cdn.portalprogramas-download.com/d/.../Droppix-Recorder

http://file.droppix.com/SetupDroppixRecorder2.exe

Scan setupdroppixrecorder2.exe - Powered by Reason Core Security