» softonicupdate.exe
Overview
Analysis
File Details
Downloads (35)

softonicupdate.exe

Softonic International

The application softonicupdate.exe by Softonic International has been detected as a potentially unwanted program by 2 anti-malware scanners. The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.

File name:

softonicupdate.exe

Publisher:

Softonic International (signed and verified)

MD5:

40967bf892f04e0865161c67ccb5b00a

SHA-1:

7aa39846ed6bca0654aa4f3042bca12fbebbb350

SHA-256:

be8893042d9748fa186c3727f4b20d8796201fb36be2e14710c1e6aea45f3f53

Scanner detections:

2 / 68

Status:

Potentially unwanted

Analysis date:

5/6/2024 1:27:26 PM UTC (today)

Scan engine

Detection

Engine version

Qihoo 360 Security

HEUR/Malware.QVM10.Gen

1.0.0.1015

Reason Heuristics

Bundler.PPI.Softonic.O

14.5.5.23

File size:

27.1 MB (28,439,912 bytes)

File type:

Executable application (Win32 EXE)

Installer:

NSIS (Nullsoft Scriptable Install System)

Common path:

C:\users\{user}\appdata\local\softonic\performingupdates\softonicupdate.exe

Digital Signature

Signed by:

Softonic International

Authority:

VeriSign, Inc.

Valid from:

7/2/2013 7:00:00 PM

Valid to:

10/2/2015 6:59:59 PM

Subject:

CN=Softonic International, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Softonic International, L=Barcelona, S=Barcelona, C=ES

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

67C1FF44C765ABDA26027A6DCA52BA11

File PE Metadata

Compilation timestamp:

2/24/2012 2:20:04 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

786432:m3S/2lUjMMPFMAlgoQpZCZPORDsddlI31bxUo:YU2lUj3F93QpZfRD+wt

Entry address:

0x38AF

Entry point:

81, EC, D4, 02, 00, 00, 53, 55, 56, 57, 6A, 20, 33, ED, 5E, 89, 6C, 24, 18, C7, 44, 24, 10, 68, A2, 40, 00, 89, 6C, 24, 14, FF, 15, 30, 90, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 90, 40, 00, 55, FF, 15, C0, 92, 40, 00, 6A, 08, A3, 98, EB, 47, 00, E8, 36, 2A, 00, 00, 55, 68, B4, 02, 00, 00, A3, B0, EA, 47, 00, 8D, 44, 24, 38, 50, 55, 68, 64, A2, 40, 00, FF, 15, 84, 91, 40, 00, 68, 4C, A2, 40, 00, 68, A0, 6A, 47, 00, E8, 18, 27, 00, 00, FF, 15, B0, 90, 40, 00, 50, BF, A0, F0, 4C, 00, 57, E8, 06, 27, 00, 00... 
[+]

Packer / compiler:

Nullsoft install system v2.x

Code size:

29 KB (29,696 bytes)

The file softonicupdate.exe has been seen being distributed by the following 35 URLs.

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1430487096&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=Yvvg830Vr7UhNNyHuvWSXLVpDHlJ-WOEBTHHnY~FK1zya8ClyuVj0d94duSnLfYYmb6krKniLMyMbTiugugdM7kWptICmyJxOWQq4MUV~QbBz~MUeDWZOEmqX~PrLe0hjpbiONtnjQ5f7uYmmM-y5OHDxeDKY8P8PSnNskUPfTQ_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?instance=softonic_es&Expires=1416811969&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=MpBtnQ3hmhZd9jSNFAciAwELnsRBC3zPxy2olEb~PVNha1Pu~kUxzjuPQtxbsZbCA8nUQHs95Ju39-247UbIGhK~PvBR3XxTgwedazN5c4g2eL6iIXRCDX~fHmQM4ZH3cEkiblN~MvweOvWvmUyViBltUQE5cxEcI54omzbxIBY_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1420193398&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=DDmpNEGRN6f46QcPUxCvfQCAtjLcITSMGmt-9QCxXA~YiV71WAvDmkT3QJvz5eSxQk3Tvj2AkwT6FJhg9P58o-YKlhhI4TxJh5-p1pD3HmtZEKvniycn74DBJl6TkP7C3aOWa-RJubx3ZqpoTG9fveN8TSF1l5LQdJl3GnBPTkY_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1433062389&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=BqZsg7ZV4HH4nXQPAEfbzeDGXUzWlSJ6gw7CVPin-tFE7HvRHOFW8hymj3kj2ddui~vGpPe5O2J9avCWpeVN8DA~jMVnOYGQYHc9nsVwXlovzm1SnLlz3MQ25CuA-zVvF2zI7BXSN8j8JwNZ7VClGC88-Z58Cqjjw6arzWJkPc8_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?instance=softonic_es&Expires=1416278579&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=ToX1CVKG5RoNThQZ99tL2b3bLAGnV~-phpgIFzLPfXV69TiAKHyherCOcOGT406ev1e5Pq7mQF2v973WolEv5atuXVkU09M8Ixh6iWAhyEHrKkhosMD7K2aq3YYIOwU60PKCG5HcPpWSj8CRQ-vUPMI1GBCFrSxlpmNNWETEc4I_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1428058370&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=YaFqpOugJV5X8HeToUYMV-ChXaSirlNGrN29RyD4u~zM0lUqG2Czui46M-CahtH9FLgr3LDTfug~d7QQfOacjahZV~-DcqwRL9g0gAZu5IXZanMIH29nrIAo~5Jtowtl2VyRyLINRepgLMf~vmhyUX1NIbrqZY-vLUh36MWC1C4_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1424034045&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=XZ2SZjf8ptfbKWgqLBlOCAnrxFLSahhVJ-WE20jsi1M9P706185SID6j3B~T76CQSBlDuteJvmMBVaT2jNE1F75jhpEXv3I0dEf4rmg4R0ox3TEcEtPezZMpj~oOYIYni4shkduSbhTKfjkmjNVgT-a5Lk1FeAsilXyFFZjtxkY_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1430383299&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=ed0H2gCPVIlAUjoM634OcSPOhnF~jUCjKj6Fn26KdK-JqCWRyC6JbKFvkAog3oVb1UaJ4JXEkALBkD1-yFTtgF0FZAE2IpLk1d8q3UtnklefHpHn9-NsFld6dvs4Gs4SaXza4Cr8GmAl1XKDWi0FXuHcNVldgif2hrMxlOq~b8o_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1428810789&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=gSbDVPFXFbQnRmOdfbcMX0OEb3zaLry~KffWMPHL~f96BcZruq5JxCL4HJ22Qvq~C2bgGc0qtpE1PUu8BTR1G3ZbpT3~kW8SzW6S9EYVqJX9PK8QDN~S5RumR4oHpniVruGeZYdJk1ikp3tYVQum7xvN7uBgfVc604XGx77kyzY_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1426501263&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=dIwGxzwEfChHzW8TO2R5G~PEhkZMlo4CVUxjQNuSPQHYcZJ-01Byb8t~pLhiC~bu5eJgqAhZ4Obi1fXzKufGEcyFXjjYXjEbjAxVCqrotQcBp5Cq3Od3fn-utqMmJRbvPIgU0OFXfg8icOORRgAu3PYOgxvCqGPoTl4J-3cNsmQ_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1432529998&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=Do0P50YyggaExVhqOj5ahIs1GuXzJy53UdhC8u0dr447K9iJKzKEKd~NmEpJoEGfxU4O3mvjftxkHZij4gsjEkgVuUc~Q24HQzata8qY9b68iwZXnaJ7XZYUapW8eZpd7lfyqA8x0xzJPcybdOlz3EQgAI2Pcg3H7nXIxEogQq4_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com//7aa/398/.../file?id_file=333076&channel=WEB&instance=softonic_es&type=PROGRAM&fdh=no&SD_used=0&Expires=1409225457&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=L7chML91IrIh55tmvNvv6bzd5EPGb2f3ImUOZOlVIVGpIibUnZTIdV8AxbiypGS~aIcvbB9Zu-fDB8AWtKI-SwKQPLFb2zpBElzN3EWdLl4aBvQKLk89ql2lb1pMuKJlORivXGbp9Z8EGGCjweGkGmgcQvQyFZO15PFPE4ne1P0_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1421209605&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=aIjkooYxcAz6KCYI-bQBzfGDd1sq9uuVmiM9lKbkWCf8MNrfY9drPDK3YbiCdW1M7jVBkCvR83lI19cCvt05BF4cW3qhaukoTh1QkqZ3yHhevROqrkYCQJfohGt1a4pp-9~Ydd-wvawgoFS5YTue1-M0kJGsrV0Xdj2rBVZCLRw_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1426953209&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=RcHpcsSahRO-lnPViUmcD7KSNZiS~EeK-ktDiD34Lz4d4XV2q0OiK3NNFf5M-nynr1~cgcx7bpbjc3n3SpAxKCtBMp1xf5X5EPzMiEZZyALovf2AI9p7HjgPjWrRoploWVDMsYaUSn3kHJKZEghmS~qsHyqLNb972EVGefYd0jw_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?instance=softonic_es&Expires=1412249187&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=YLpHh~L4y1k6qF~3Mk5eso6GYI3aK1pUkx8ROpyatiLHcgZfcrxOk~VZzAWBqS2-vABkClqoH0U6uEqvNy-8lrNDiKNQRfC6liVqXh~VC5LvNP-VB~a7I3eFgB6Hh3Q7hf3mfdCVKoAShHECXLTilhxFUdmq~ZHmIh93wFzUEfE_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?instance=softonic_es&Expires=1412416161&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=NW0sXtM6oLHGaS3R4V1wK1TvFP2CGsT~F9MTv67S25Bznd5HaNYuR~gTWPL-YfSYjWmlVaV2PmmbNBYqggJ3lRyLzD~hW-hK5lhqAJob6bCWf8OWtf6Yx5pRF3HrKk9WGBM4SS7Rb9sRasbKDB-cQiYSKWJ6GhgVsHQ6DQqvAeA_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1420528195&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=Hg9bdk9gR~Q-kSnickIUb~ZyeKvYTtjd8gDLp8SS81xYdqFXcelNw5JAtZz9jTAzvwI07KR74rATluNrmvSFeAzx4RDW~Ftc2jZlBPs044JNvQ68IW84TzMKDbiJtM~tu7HFBlKee4a0jBbPN0K4hOtzH0L-KbBBNCtaT8CoO0M_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1431063162&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=eTEJWwDT6jZKKDsF7K7w1H7gN7-QMJjhUEjq72Ltd3HTSTX0qgL7jSEfOBylsnXKeam5RyI05v7-OE-LPNZfvtBU4DaE7wxgq4~lKHN5GXe--opwnmRI9XNBXkmQYsnIdEMLz31WcRcgitbu4dwm5VmVJ07wsweJrQJNd5N89JA_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1431231771&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=fLztaXgLW8-vO6NK2twtGIpEH6XKSCNF7rcb9hGur0eA4OwtzHhqIidF9CQj1uvYq1nTr1jEV0nO9l7BEWINCcWjfUWwx5F7RZb5Mrwx8Cyg9xjw02k5EuSy9T91R2ByZbWbN0B1MFUbK8u-r6QVRMecyuzEuXRcs6VlQdYIygQ_&filename=Softonic_ES_1-5-11.exe

http://global-shared-files-l3.softonic.com/7aa/398/.../file?nvb=20140430000031&nva=20140430120131&token=0bd604fe279fde10aea7f&id_file=333076&channel=WEB&instance=softonic_es&type=PROGRAM&fdh=no&SD_used=0&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com//7aa/398/.../file?id_file=333076&channel=WEB&instance=softonic_es&type=PROGRAM&fdh=no&SD_used=0&Expires=1409670604&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=eSHpWblwgoLgg2ofOrZf2Wi7n4uTYLrqjbZQvpggJyxDxCeBS0ZLEWX3IDjAEcASNOMYsmGSMCJ4u9QQDHRNQQMt6MYC~1-irZDy8JOBB6k35thbZ21TG5aePXdJ31RrUTTU9x1WHXvY8Z9W-72Ax-FdxAW9mEKPAXcaNa~kxVw_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1421921075&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=MQDhM-Al1AQEaOxCogrZ4aHW4kKOZQFxAJNlIub9CUhaMVS2K3KfPW5-Zd~atAvRQGwiZGfUYLVXNV17d4X-rGlP9wsSre0DL3StV2xp7Pjfnnc1lHxjxIa7y8sMucGfTRfncCKzQif45qvRz5-pGBH91F5zgLBYN336SZATUL8_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1428737180&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=EJisBFm6X29zAe~ec~3U6wJYUekJS5dxtfJ7DgP1WTg-fi0D~t1tdKxdQXAR-toTTlXQD-ItTciadm69EIRrsPsZk3d3XfiCnhGyUuzl4O-6Wf-~FkHEHkeKMz7gWbIrrNBUOIWuep4~S5qCJt1sxPlEb9S33tGSIHoN4~uggaY_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1427452552&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=VQIpxBWN~jiYbLpQaMg7x90yv7ALV5giuBh2AdQ9918XFvT01XaBS5yLP5~SW39Z7O6hXWirn3NQ1Z51VHiUOz3Sz1svBC87wG-P6JKg62jf4ovKEgf-70LfBixy3Ield0QoY0a8BQ~i8UmjN73R~UWas~C2YxgX3z~G8ZB5mZY_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1423649974&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=HA3v0MiGidfyzYjmf5SwelpurHuYv5UmkDm3MkntDEXo0IIyCzsPKmXX4VUurx4FAzv4QY8cNYLPi1HZbwU104sRK8~sAbHQwq8uJjfvx0Q2BC0v5AaNy178OnUdFf8vsYIkoF85spksUA3lr~6Tygy02UYC~BvbIpGtBLgPkIY_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1419723870&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=I2dyjFDmoK73~JROSPur1Mj4I2fhhdEA8fWNk6NF6vinBXX6yIAK5sf14ctqckxSu9cTeVoOSLoOd7zgsfioQiO1JSuKJmXMvUsjgJ02trHJfYNEQt~sfwg8SDuMqgMMz2vx9LwoheO-Pt1xEKKHD1bIc7GUKKdIsQ1iUNOQIQY_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1420956740&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=dLRpy2FXy3WZdZCfHyyXEF2xBnZBDpemxGBvQSOD-FAQRUmOnO0L0iqCUZIhg3fEiw56KrfIIstIIVyc37L9nqXm3FMWcIDLIXyeNe8MxfQVhKhvnsNhBSzBwS1~5hWBihp1oD~2dxgewFaK1KKEoAY6eLq5EyTJN6eJA4UZ3M4_&filename=Softonic_ES_1-5-11.exe

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1419985715&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=UNqvMvdfjjUke9~vqtQGokDEFsddb6Ff6GQQFehP4V5SgkdQ6AMGt~7LinZU6Ux2BjkZfPLVTtLMd3rIVtj147YX4wngLoq9p7IuJzhTPWDBYToWzxUztzoYLfjbRn~EVQAvtPC7y66fh4oWdciL4HnVVutQIYaIkz3Z9qbTf2Y_&filename=Softonic_ES_1-5-11.exe

http://dplus.softonic.com/.../333076?type=SFW

http://gsf-cf.softonic.com/7aa/398/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333076&instance=softonic_es&type=PROGRAM&Expires=1430193217&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=OMy8l6s0Un1UdeJcXy1m7aMQsgG8RPhNp2aM41BekwV8JF3fEEvwHhrOnyclAa53-4z5dLNuwMWGfQDsGSoHsQV119iebm4XqOlpMELrosrboNTqUuXFDvDYqPQH149AHn-lL7ckLXBjCsQgZek~gV8tFf4eiGCJq8mkivqYsjA_&filename=Softonic_ES_1-5-11.exe

Latest 30 of 35 download URLs

Remove softonicupdate.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.