home

sp58586.exe

Ralink 802.11 b/g/n WiFi Adapter

Hewlett-Packard Company

This is a setup program which is used to install the application. The file has been seen being downloaded from d2.driverscollection.com and multiple other hosts.
Publisher:
Hewlett-Packard Company   (signed by Hewlett-Packard Company)

Product:
Ralink 802.11 b/g/n WiFi Adapter

MD5:
4047843e4121ab9f0d1bd480403bcaf8

SHA-1:
794587a529a9e725381459e15da89941012167b0

SHA-256:
76efa2020daad1d38311a6e2a090aa2c6c0f25df7bac4b56b61e4edef0d5c96d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/16/2024 10:23:03 AM UTC  (today)

File size:
26 MB (27,304,064 bytes)

Original file name:
stub32i.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\low\content.ie5\{random}\sp58586.exe

Digital Signature
Signed by:
Hewlett-Packard Company

Authority:
VeriSign, Inc.

Valid from:
11/16/2011 7:00:00 AM

Valid to:
11/16/2014 6:59:59 AM

Subject:
CN=Hewlett-Packard Company, OU=Product Development IT2, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Hewlett-Packard Company, L=Andover, S=Massachusetts, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
44BC63EA9D7FB68CBCD9101F391CA145

File PE Metadata
Compilation timestamp:
8/30/2001 4:22:49 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
786432:eFV2QArEH1Pcn1mzzMRSh8OgBzkjujbpu+iOYk7h:8gl6VzykjujI3oh

Entry address:
0x8927

Entry point:
55, 8B, EC, 6A, FF, 68, 18, 33, 41, 00, 68, 60, BA, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, E8, 31, 41, 00, 33, D2, 8A, D4, 89, 15, 5C, 63, 41, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 58, 63, 41, 00, C1, E1, 08, 03, CA, 89, 0D, 54, 63, 41, 00, C1, E8, 10, A3, 50, 63, 41, 00, 33, F6, 56, E8, E0, 00, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, 11, 2F, 00, 00, FF, 15, EC, 31, 41, 00, A3, 24, 8A, 41, 00, E8...
 
[+]

Entropy:
7.9989

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
72 KB (73,728 bytes)

The file sp58586.exe has been seen being distributed by the following 33 URLs.

https://d2.driverscollection.com/2ecbf4f16db382/40b9835ba5f9bd951f2451e83fd5a8f9c8d965964dbec878e097ae5f103d4127c03854f01a8b2319b123810c6686881a5780281b/3/61/43/.../sp58586.exe

http://h20566.www2.hp.com/hpsc/swd/.../obtainSoftware?url=687474703A2F2F6674702E68702E636F6D2F7075622F736F66747061712F737035383530312D35393030302F737035383538362E657865

http://h30642.www3.hp.com/pub/softpaq/.../sp58586.exe

http://h20000.www2.hp.com/bizsupport/TechSupport/SoftwareDownloadEventHandler.jsp?redirectReason=SWD_FTP_Request&swItem=ob-111782-1&prodSeriesId=5225017&prodLine=KV&targetPage=ftp://ftp.hp.com/pub/softpaq/.../sp58586.exe&filesize=27304064

https://d2.driverscollection.com/2ecbf4f504e027/5b18bce8e2614d8f6dc73b9d0e9bea8ebb9b5956daa1c6a852ee56e2e7d7b8ba60bebc49ee389ab98dca423cef8d793258519681/3/61/43/.../sp58586.exe

https://d2.driverscollection.com/1d3f790c17bced8/e4f8ce7dbd8ce26601b6c5a2e185f69a93d56e97001020db4e443cfcb54341686914eacd671ce3f4a2bfe3873d583fa956d8d540/3/61/43/.../sp58586.exe

https://d2.driverscollection.com/4ad11d635c5fa/b06d64f132e94ff70a6b7bfc629a3b5d0c73a1d83563a0ea41dfb74b53ec53adef539a2d7ef63286c956c995ebd071f654cd2147/3/61/43/.../sp58586.exe

http://d2.driverscollection.com/1d3f791e540d8f0/36f308a368cae27e39332e19e7c8e13efff8eda76fe9b08a0dfc2340d66f9489cdf6b00914876322a10324f22151c7285291332d/3/61/43/.../sp58586.exe

https://d2.driverscollection.com/_7_14182132182232282332602304ce8de530ed9b711492e0f8c2/508394afb92e748309f9410fa87bdf6b8b94ecc9e578a33dd9fed1d7c13561bb92fae28d75b1d3aee50ceca70bf7f5bb55df6596/3/61/43/.../sp58586.exe

http://whp-aus1.cold.extweb.hp.com/pub/softpaq/.../sp58586.exe

https://d2.driverscollection.com/1d39c9e42ab65d0/43683134b057128883b15097d6ecb5945a4c877c2875cfb1ee9bae91b470b681ed9cec7b841c5757aaf909bae3b085cc576da0d0/3/61/43/.../sp58586.exe

https://d2.driverscollection.com/4521f7dfbd3f1/94c282c78ba069b2b734bd6c555bd239b0dfe7b7c23f47dcd87e4f7c7d6d124c197575660a068867de5e9bb860ec348e56f94aef/3/61/43/.../sp58586.exe

http://notebookspec.com/hp/.../link.php?driver=NjQ3&nbid=NTM2Mg==

https://d2.driverscollection.com/2b355e881937ad/394ae4c2587f4107eee48b11e0756a58d62e65c688064600db194335ea9089c92bf1db3b8b1a01598359d3f08564c62854f12bc6/3/61/43/.../sp58586.exe

http://openx.smemove.com/driver/hp/lan_wlan/.../WLANRL_HP1000.exe

https://d2.driverscollection.com/1b015bc7cb283b2/f7ef19e46f4bb653c20b74956f3ff23e8442738b66759889d5a67624646ac97b6ad3cae63db6012eb6ea5d7656126c8856633efc/3/61/43/.../sp58586.exe

https://d2.driverscollection.com/6e9cd073621f/a3af175a4044f2eb750ab2babae61a23d6beddd9bded2a249be0604d162eca29d9fe9973eded1a0832c26a50ffcd639d5665c189/3/61/43/.../sp58586.exe

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=5060882&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=4052|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66747061712F737035383530312D35393030302F737035383538362E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

http://notebookspec.com/hp/.../link.php?driver=MzQ5&nbid=NDk2Ng==

http://s7462.chomikuj.pl/File.aspx?e=ixO7FlXA0CNtEnOV0uEsCsEygo0F5Voh6O1yTezyXJROMKoB3zn70LLyutT4ivxCv2v7sHjR_JhNYRgzgck4YujUaM38O-VfzlFQO7Hnd_jS1Mp9Dgu0clOVYRI-LbJ7TkuUQzRQ61V-yZEg343gc3WwRWX9Vyc3GUBfIutFCJY&pv=2

http://h20565.www2.hp.com/hpsc/swd/.../obtainSoftware?url=687474703A2F2F6674702E68702E636F6D2F7075622F736F66747061712F737035383530312D35393030302F737035383538362E657865

https://d2.driverscollection.com/1b015bbc977a7c5/acf8b7f0748c81a72c436b0035de650bdf17926062c1db4d20045b40f11d80d61dbd657fb84fceb12480b27e49c9349256c0cfb8/3/80/43/.../sp58586.exe

temp:sp58586.exe

https://h20566.www2.hp.com/hpsc/swd/.../obtainSoftware?url=687474703A2F2F6674702E68702E636F6D2F7075622F736F66747061712F737035383530312D35393030302F737035383538362E657865

http://h30596.www3.hp.com/pub/softpaq/.../sp58586.exe

http://www.new-down.com/alan4_download.php?url=aHR0cCUzQS8vZnRwLmhwLmNvbS9wdWIvc29mdHBhcS9zcDU4NTAxLTU5MDAwL3NwNTg1ODYuZXhl

ftp://ftp.hp.com/pub/softpaq/.../sp58586.exe

http://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=5269111&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=1093|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66747061712F737035383530312D35393030302F737035383538362E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

ftp://15.240.238.55/pub/softpaq/.../sp58586.exe

http://h30639.www3.hp.com/pub/softpaq/.../sp58586.exe

Latest 30 of 33 download URLs

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.