» stepmania_v5.0-alpha3.exe
Overview
Analysis
File Details
Downloads (13)

stepmania_v5.0-alpha3.exe

StepMania 5

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.

File name:

Product:

StepMania 5

Description:

StepMania 5 Installer

Version:

v5.0 alpha 3

MD5:

8f522759c6598e6ce7558b191e06bb43

SHA-1:

3256b306fee6a50b9ce1137df2d06f7e52e61a8a

SHA-256:

8a751d6038b3960b3b32049253f60120d0457c78de521311175e6346392eb3be

Scanner detections:

2 / 68

Status:

Clean (2 probable false positive detections)

Explanation:

These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:

4/30/2024 2:39:07 AM UTC (today)

Scan engine

Detection

Engine version

Trend Micro House Call

PAK_Generic.005

7.2.213

Trend Micro

PAK_Generic.005

10.465.01

File size:

45.3 MB (47,546,973 bytes)

File type:

Executable application (Win32 EXE)

Installer:

NSIS (Nullsoft Scriptable Install System)

Common path:

C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\stepmania_v5.0-alpha3.exe

File PE Metadata

Compilation timestamp:

12/6/2009 6:50:52 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

786432:duUHqvkByGH6fxU7GItUb1Vw+tCPYeFgFLxl3rf59z+Of/Ds1Rx585b:9KvkkxxqUbOPVmR337z7I1Rx5M

Entry address:

0x30FA

Entry point:

81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 18, EC, 42, 00, E8, F1, 2B, 00, 00, A3, 64, EB, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 98, 8F, 42, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 60, E3, 42, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 40, 43, 00, 50, 57, E8, 92, 28, 00, 00... 
[+]

Entropy:

7.9976

Packer / compiler:

Nullsoft install system v2.x

Code size:

23.5 KB (24,064 bytes)

The file stepmania_v5.0-alpha3.exe has been seen being distributed by the following 13 URLs.

http://gsf-cf.softonic.com/325/6b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=59281&instance=softonic_es&type=PROGRAM&Expires=1480290627&Signature=arwYwkMDVUUZojLFKcmEuufI3FcVUhEJdtrgJ9dHNHfDG1YG4SRGqKd1lhO3xLLKNIWDauIznQtmkKaEgTPeoQxoU0UmpYnUWWIrHimj5mAB90y0LC2z-lVS6-sRqT9kHjJnZfby3MqAnmZMlc5UDSSaL1duPQFneoUwsjDlg60_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StepMania_v5.0-alpha3.exe

http://gsf-cf.softonic.com/325/6b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=59281&instance=softonic_es&type=PROGRAM&Expires=1479129296&Signature=McdHPiUCxD2givmX3zJGFxhUkO05ZrV3Em~L-7djO4yy7J2TmFp~6hOVclZMOQIvU~6JfZP0TJxd838NavOrJ0x-1sCccc9I2Q5oglP0XLKwZYE5HT~rPvsNG-PfJT1ulHOsaTiYrAE6uFej73B8SnuW717sRAaDkVgcBjC6j4k_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StepMania_v5.0-alpha3.exe

http://gsf-cf.softonic.com/325/6b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=59281&instance=softonic_es&type=PROGRAM&Expires=1479232746&Signature=GgunARY17wa6WRP3nzCnvtnSIkzKufQrw-uzhvBC470Xj1z2HOuXx2hJ3Z53tw4SGYTCUuCwxgJZylEZEd-it8XroUHBLzg88uDRl20ZUtLDw0ZxqPTBUZA0H7qObsNdMi04BxS8FnPo2kgzAoRSMcclahZT1~o2oVQ5Q6OEtOY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StepMania_v5.0-alpha3.exe

http://gsf-cf.softonic.com/325/6b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=59281&instance=softonic_es&type=PROGRAM&Expires=1444536755&Signature=iwnPkLH711317ZzSw4OC2~J~UlIyEkvgwhVELFyYIO5XaBfIoHzQUpl3zoBqZXN1jJL0KiUGAofcHZUDHlDU5t1-WHnM4uHffvyq2eP4l3PcizGWoDBtbamFt1LMCjDn3aaSuYkXRnCi4PEDxjIvzScbiThsW013c8KqzowUuns_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StepMania_v5.0-alpha3.exe

http://gsf-cf.softonic.com/325/6b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=59281&instance=softonic_es&type=PROGRAM&Expires=1450073024&Signature=Dy-KdQww45IyXedqY82OVgS3VExp-zRNBTqrPbWCLITDsM4Vmwr~0D56q7qlBzkjtyE9Wpb8yVE0JOTeT9dMppKZoiK~nzYfbxDgbZAhy00bCuVVuLqtQR8liHbzvlo6E0wrB7rDtzHYC1eNgmDp6MSLzvJ8natlHI7J0kBoNFs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StepMania_v5.0-alpha3.exe

http://gsf-cf.softonic.com/325/6b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=59281&instance=softonic_es&type=PROGRAM&Expires=1441612306&Signature=Vbr2NF~aP8jd9tNeI-rFgqZuFYEWfYzaoCOwC~MV2PT1QIRuPAO~1SfIPcdJ-lTlejdqZyUEdE1Kl9sYnJ34YReQFOSY9R0DTOlTfAQ2IwB9cmKAGnmOca5b0W6w58SNo9MlPfKu45ln-0YDwltdyqKPmM78lTDZQky3QqviqCA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StepMania_v5.0-alpha3.exe

http://gsf-cf.softonic.com/325/6b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=59281&instance=softonic_es&type=PROGRAM&Expires=1439744745&Signature=Ien7PEEl27219AwYyUoQvyILT7OKX5LEgIEmt3RAuVRd893Xm9tRqEPCfKdnb~UWGkLi3nBAoutgKtIGHRdJN2NVYgG9NLo~RsWzZxQoAwj140tDa2K13EoDqFPOYUlDzSrmlFz3n5ZEfAE9UPuzGOXiLM5l8VFzRWhCYuMqcAg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StepMania_v5.0-alpha3.exe

http://gsf-cf.softonic.com/325/6b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=59281&instance=softonic_es&type=PROGRAM&Expires=1448900091&Signature=cA0BHy6VtnXG0lodEibVNrqzTq83ImsO8e-v7h6G4~DF92gSxa~itlqHWPvVD2njUn8i73tKLpECGv0Pg7kHebvSNNEMB~Goql6ZJd0lMDlpRKeXCbEqkrwvcCqCHjRAMXAcy~t8Exiasy9Tiq-tnb~Ix4naQsm8bbeKSxXK19s_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StepMania_v5.0-alpha3.exe

http://gsf-cf.softonic.com/325/6b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=59281&instance=softonic_es&type=PROGRAM&Expires=1447505287&Signature=NlWv8UYYmOEGcjtZqQSofuWm52WMWjRSGw1XDg3oaWhwaE7YNcUc4U92t9~hIkPToXgpvqpSnPLKCkOqltIPgJyL6N7coSiGlsT0TYkA~K~I90TrHSNWqc1Az72Cn5X9awd5ANBJ99MCtUkz84vtb4EdxVrYXwOy0cQ7LAKakh0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StepMania_v5.0-alpha3.exe

http://gsf-cf.softonic.com/325/6b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=59281&instance=softonic_es&type=PROGRAM&Expires=1438938690&Signature=YNQX1kQIwSc9uJFh5CA6-wzDEaojRhuLNmJB7kWMo19llr83QxvRlKsfXNjkUagW1X2bzXFr7u4kuraEZM4AZZAP7fErtVzzOhw7GNsYIo3DlSX6zXXOCmucItAOZxkJr0Hj-1lXo8eKjtoTcRGe2Tq0VAoXGMZHDCrDwy~dPl8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StepMania_v5.0-alpha3.exe

http://gsf-cf.softonic.com/325/6b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=59281&instance=softonic_es&type=PROGRAM&Expires=1459214651&Signature=U8m-OfXg802pPLpAp7ZYAuHrnUCdzRceiojDsxc321RLjBuZgG5PdhFP-0WAiob9B79-RelQ1IeHyd6~rQ-Ob5S0Y1CkPrD2oCc8Yj0voE8fZh2JMeUdgG6gfLN9~KSg8HQqZ-2UPzkdLAwZqvztm2Oxj7qIX~YsC1gWP36AOB4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=StepMania_v5.0-alpha3.exe

http://stepmania.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/.../9Qt4Tp0dDMO8WnqQMg9E0gJhKjoXY09lRv7kagRkEIvIO 5le1795eA3ilpSnlOfArZqoCbIm2OcK0VDySHVxCrKc2pjDLuHXpuKvQ=

http://sm-ssc.googlecode.com/.../StepMania_v5.0-alpha3.exe

Scan stepmania_v5.0-alpha3.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.