» setupimageresizer.exe
Overview
Analysis
File Details
Downloads (22)

setupimageresizer.exe

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.

File name:

MD5:

43d75425ed4529ab84b2e23011ab2a09

SHA-1:

f9c569666fcec2efab6cf14d43e1e6be79f84df5

SHA-256:

e2c1bd622bf00fd4759a1b76974253830e2382e8410c81a1c588b6e7d33a6d4d

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/23/2024 11:54:55 PM UTC (a few moments ago)

Scan engine

Detection

Engine version

SUPERAntiSpyware

Adware.OneClickDownload

10312

File size:

289.7 KB (296,619 bytes)

File type:

Executable application (Win32 EXE)

Installer:

NSIS (Nullsoft Scriptable Install System)

File PE Metadata

Compilation timestamp:

12/5/2009 11:50:41 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

6144:hQqnfGlrUWjeUkKLmsayQJsxxKmoWcSpX2WqVSx3IV3:3fGlfje2mPyQJs/KmBtF+ME3

Entry address:

0x30CB

Entry point:

81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 38, 3F, 42, 00, E8, F1, 2B, 00, 00, A3, 84, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 30, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 80, 36, 42, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, 92, 28, 00, 00... 
[+]

Packer / compiler:

Nullsoft install system v2.x

Code size:

22.5 KB (23,040 bytes)

The file setupimageresizer.exe has been seen being distributed by the following 22 URLs.

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1450050888&Signature=IolhvJ~Ow53WSTpi3Bc6l79iInGKdpHsSEfBzXvzCQMnmHY0xZc6~R8Ghu4VwP-RzGs30jInp-oXhWt1iSROCyVpv9QbSPUGolrfaoeLuAlo~5EacKH4egqlL8wrj9k~fDLtJliWtJIjsA~4RJZieKjMMijJcDdtQddXDYTQrks_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

https://yursoft-image-resizer.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWtwOe1duzLZ1AmkGk25OVrnalK0tQ50oCyC/0CWVE6v0sNR3H45gEbiTLx8HQmcc5dEmZtM JsrKiEgSQZds0/.../VgmzTygBcIFRaHYTi1 fKLK0SmUD6Wn4ZuGwZtjkQn7 Z2Wi5upMaARnN1JeSqe4bzORBzbirnWntAM5602

http://yursoft.com/.../index.php?option=com_phocadownload&view=category&download=5:image-resizer&id=2:image-resizer

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1479701732&Signature=cqvm5goO1b9yaPlm75IwbZ1H9VgX-71oZ88~5iw36xSBp~HiGDJuZVQMQ5nWMrDdOFg~ZL0RiHellqeEoisp1ndB0ETjkATKTYZrM4ttq6WVehS59tdvMtZ5gi4-t3DwqoHMGcMQguIrslJbnGjrVbhUT36Z5f8lmvSZuAumVh0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1470300458&Signature=h2-IEOzOFLHu32dwGsq6lUoaPLcTcn9OtHEDia0XWJL4dAYaVlur2K-M4g~33LPrJDoYIck-9DVwo~MsE7TdmXDGZHWf6F0uwulR1W6Eap1f9yrJjtpPQtVvmcI0RjNfXaRLienKqfvex33ybmb8m6gs7Nfk2m3SVztPayI6rbE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1443593180&Signature=cpbRbZ7rwswvToTLQ2PNbcZu8s0Kg762FhBtA2twLimPO328ACB0Q7-1yIFIoOMPh4IHk78mB18kuRLRyd2EBtJ198zG7CWmSKsE1J6Y-W5ek60CRzUVDIEE4VhldLD3cg0SXPSdDA1z9t4U5w7ylXHb-ZbpxD2ux2Jm0ROzyU8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://yursoft.com/.../index.php?option=com_phocadownload&view=category&download=5:image-resizer&id=2:image-resizer&lang=es

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1450154052&Signature=fTXI047sWp18kvRjLSv5pzKH2F26YExmeQqyIt6Epc19U16SJKeZ78DgbYeP5cVe6D76uNtjZpV-d-1fyA1mle9bDrF6YbfGibzF1Sg2A9pueomxFRE7rWi-E5tZsdwv9XgMOQw6WMvqSLf58-Bls3K8abF2fZrsVpB78RfHRlg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1426736461&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=Aut6~w6WcVcRDuF9dHkt1dmVyBS8jyGpDNKyMRS~BlfvtScI3nELZSA4vsUENxPYSwYspHmqGb4TKrGhD4f6nfr8MTHZOHoF9GzTiNqwMiSgYbHE-RoZBvXdxJP7WsMn25cqdZ5GQdr1QySwiaovJ2V-KMuwKYRYvxuaiaYVb~g_&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1468073850&Signature=CHlebKRvC65WC4XgDGKT~ooLtRUaOy1VUFF850C3SjhLLFOvoaq-ci9fd2KeM5PJYzMNKahA-AxUDq7whIBvWODsFzGoYuTsDkqcuY2SHoYFSVm1Hic1xnDCDQdcuRtzPo-0qBtWSUBopnaB1UXyD6uuYgjZuhhH3LZflcVlUhs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1468451244&Signature=Ah6r0OyXeQbHYWvmPREU8cLH8RDTV-aCLyM~LgMz-hhxUs8D57Y780ZiDdA-g5uSz-j2N7ErTMGd12CFGZuUXthGhHILxv8vSt0uDYKXvZa0j7-pT591bOmSyedcslsf8WHjSSQz51ir15heoLKZCEy3ss6Yna9rkZX5kces~GI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1472120500&Signature=ehQfSBW~YGEQiIm1-QGTr76Gw00nUnqiDX7f~fvIGc-NPNc8h3M1ldaSU9BJgQSI285KUgYg0L~duN8wH7MlWeST13d8Kf73GVL0Bch~TQS5PrnpkmkWRy0arjFKXEtWIvvjijq1rB9SK-bMs3UR4gqZ1LjHUtPNI3S1KJuA57s_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1466345810&Signature=D81VBb6K1yNvSNkIRIjaY4S6EwUVRx0Zq-0w1gi4~3NYAEn0AZw37i2F6Wouh5Pge1zzK7Lsjm2T3lRD0cayIeRA~bYPU7jHOJXS0EKg65RBuyJ93F8LFNDZ6R3MxlXqpTXmjppHDsTCMywuVIREmVFWVPzj29X9arV4q8CzJQQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1448745050&Signature=D6VetZtHbpS0d~kAsgvZYZMFqYMgjgt2Ovuq~radI-0JNIT4r5mCQA8RQwJ9Ap1Wj44odGl7-EJt7EOXiQ~0jXV9Lljy7~h7MP02cTeGUF3yLpMFiROXdavAUDCazke5tI91x2gYvXBiHgaiHy5Z4-aPrtmNI74KsEQAm-80O5c_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1461771426&Signature=XLRfNj~11IuisqVVtM3F5ndpYw8AEJokP-eSkdkJAXMeLAd1aTniKK1OhcSz~mGGq7VkbgsII8eQYjve-EmHh84e4zbFZLt7e-xASKhDwgVnREowUSV1J8Ln5bS0vl-~LeYC3CyRMR9KgKl9I78pRGRTjLAV0MySOAnk-WeC35Y_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://yursoft-image-resizer.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWtwOe1duzLZ1AmkGk25OVrnalK0tQ50oCyC/0CWVE6v0sNR3H45gEbiTLx8HQmcc5dEmZtM JsrKiEgSQZds0/.../VgmzTygBcIFRaHYTi1 fKLK0SmUD6Wn4ZuGwZtjkQn7 Z2Wi5upMaARnN1JeSqe4bzORBzbirnWntAM5602

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1448861878&Signature=R5EFqoPGZNRItb0VVyGQ0PrFgWJ5euq94InTsIOus4ecpqSzgK7lkQ~Kozho5~ZlsQcKcFIzUgbTc-rCKURizSKb0G5gpqYihRvuGieEy5319jrWKbQLb9sIb4kWOxrwe190SPlFnVgy0aUtBX0mIYeS2TetUm~j-H5~PPsQr9k_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1454565902&Signature=RXChq1YHnzxMnHxeea71YoQ-9rj6AiahHEIEXTBQ04iP8T0669nYLQkuBXYskB4BxTf4NwRihxv-hHxOBhY3qdaSFTSU3MfKj07bySJl3PMbb2d~A66GGrnzx3BdooppF6DdX0zCp32KytLaHbHjWSvyWZ3XfK~NKTqvQrDGqmE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1448427831&Signature=RO50KVCI5GU6IcLYE1nKIRHIsE-45uzzJDQeCYlwZIB6I3couNPJL3~k9TpWzcx71z3sCax~TrI~lqVoH4e0BwfKwvJpKz3rZDZKiXb4iw5~x2eQNAOZsyVxn7QwFz917n4Ybrjrk~IWSqXWou3QVYda~rmLORBwsM-IUs5~LTs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1442981837&Signature=OCdEjAPq5vpLwiM9Ee7VR7FA0~-THHIlOxZQsglXNuoyUFKS0JUbp7hMX~5LujMk3Nl39DaHMNx3sNF0XfPYUQZHasqiKUBbQM~XrZ6PucWvbwBta3H3DtVv6zADf2RaK9voz78pmgRTdwTdjPMVDcKl0n3vXpWsRt1IXXxatxM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1437814101&Signature=FTTV4oQW-RYj1Rz~~grYSo9r4gXncLabN~OTfRm3~lMEWYvL8AdE8n46u-KSYvzaeL~z5J2sjPBL8z0vBShWq49ToAGl7UMNlJyIGNAaPet6xWTiXnsd2tyA2yemKBlQVq49BmdXTTQtwkSZVvhBMiZuCW3cDDtRN9nLGwCoTME_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

http://gsf-cf.softonic.com/f9c/569/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662030&instance=softonic_es&type=PROGRAM&Expires=1446371752&Signature=ctNvx~iXbt4StrZXnV9dKC2HJr6~K7OvN4af4xnEhlPV~4Q~v7wgY9TaUzd~hD8hXO62fsOek3UJvV3pA-CHwl1tCJEpLcpWZaI9ywGzwqPIHQVEYsBJkNmwl2ORJFw~a7u-CYpXZBAQfUBuLazN7jmF5PDbbS0VPZ0lRJd16e8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=SetupImageResizer.exe

Scan setupimageresizer.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.