» upd-ps-x64-5.9.0.18326.exe
Overview
Analysis
File Details
Downloads (17)

upd-ps-x64-5.9.0.18326.exe

Hewlett-Packard Company

This is a setup program which is used to install the application. The file has been seen being downloaded from h20565.www2.hp.com and multiple other hosts.

File name:

Publisher:

Hewlett-Packard Company (signed and verified)

MD5:

18f4c28bb1feb04eabe3e9156dd178d3

SHA-1:

b57f22f78d02d980c2f24336f2b7dc27eba4395f

SHA-256:

7abbdfecd372726c1d8e13bb0f2adbf29fa16e7f6d8ccade6816238e43b44877

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/23/2024 8:13:27 AM UTC (today)

File size:

18.6 MB (19,474,720 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\upd-ps-x64-5.9.0.18326.exe

Digital Signature

Signed by:

Hewlett-Packard Company

Authority:

VeriSign, Inc.

Valid from:

5/10/2013 2:00:00 AM

Valid to:

6/9/2016 1:59:59 AM

Subject:

CN=Hewlett-Packard Company, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Hewlett-Packard Company, L=Andover, S=Massachusetts, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

04D86E77D3018D9F669CB19B50ED6EBF

File PE Metadata

Compilation timestamp:

11/2/2009 9:23:03 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

393216:QW6fj0vHQThoWPl4xO8bFRQUnT2nT6HJRNSH4XBoTc9XHaOysnqxlgX:G0+R0/DnczYXucxHaOyQYiX

Entry address:

0xA79E

Entry point:

E8, 6E, 4A, 00, 00, E9, 16, FE, FF, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 20, 3C, 42, 00, 89, 0D, 1C, 3C, 42, 00, 89, 15, 18, 3C, 42, 00, 89, 1D, 14, 3C, 42, 00, 89, 35, 10, 3C, 42, 00, 89, 3D, 0C, 3C, 42, 00, 66, 8C, 15, 38, 3C, 42, 00, 66, 8C, 0D, 2C, 3C, 42, 00, 66, 8C, 1D, 08, 3C, 42, 00, 66, 8C, 05, 04, 3C, 42, 00, 66, 8C, 25, 00, 3C, 42, 00, 66, 8C, 2D, FC, 3B, 42, 00, 9C, 8F, 05, 30, 3C, 42, 00, 8B, 45, 00, A3, 24, 3C, 42, 00, 8B, 45, 04, A3, 28, 3C, 42, 00, 8D, 45, 08, A3, 34, 3C, 42, 00, 8B... 
[+]

Code size:

72 KB (73,728 bytes)

The file upd-ps-x64-5.9.0.18326.exe has been seen being distributed by the following 17 URLs.

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=3974362&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=2030|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F66747761726531322F434F4C34303834322F64732D39393337362D392F7570642D70732D7836342D352E392E302E31383332362E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=3974356&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=4132|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F66747761726531322F434F4C34303834322F64732D39393337362D392F7570642D70732D7836342D352E392E302E31383332362E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

http://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=1845561&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=4158|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F66747761726531322F434F4C34303834322F64732D39393337362D392F7570642D70732D7836342D352E392E302E31383332362E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

ftp://ftp.hp.com/pub/softlib/UPD/.../upd-ps-x64-5.9.0.18326.exe

http://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=4157320&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=4063|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F66747761726531322F434F4C34303834322F64732D39393337362D392F7570642D70732D7836342D352E392E302E31383332362E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

http://h20564.www2.hp.com/hpsc/swd/.../obtainSoftware?url=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F66747761726531322F434F4C34303834322F64732D39393337362D392F7570642D70732D7836342D352E392E302E31383332362E657865

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=28870&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=2030|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F66747761726531322F434F4C34303834322F64732D39393337362D392F7570642D70732D7836342D352E392E302E31383332362E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=29790&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=4063|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F66747761726531322F434F4C34303834322F64732D39393337362D392F7570642D70732D7836342D352E392E302E31383332362E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=503550&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=4063|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F66747761726531322F434F4C34303834322F64732D39393337362D392F7570642D70732D7836342D352E392E302E31383332362E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

http://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=1140778&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=4132|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F66747761726531322F434F4C34303834322F64732D39393337362D392F7570642D70732D7836342D352E392E302E31383332362E657865|itemLocale=|swLang=26|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

http://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=1140778&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=4132|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F66747761726531322F434F4C34303834322F64732D39393337362D392F7570642D70732D7836342D352E392E302E31383332362E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=1845552&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=4158|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F66747761726531322F434F4C34303834322F64732D39393337362D392F7570642D70732D7836342D352E392E302E31383332362E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=28870&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=4158|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F66747761726531322F434F4C34303834322F64732D39393337362D392F7570642D70732D7836342D352E392E302E31383332362E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

http://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=4157320&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=4158|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F66747761726531322F434F4C34303834322F64732D39393337362D392F7570642D70732D7836342D352E392E302E31383332362E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

http://ftp.hp.com/pub/softlib/software12/COL40842/.../upd-ps-x64-5.9.0.18326.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.