» 57b94adc_stp.exe
Overview
Analysis
File Details
Downloads (15)

57b94adc_stp.exe

Free Video Editor

OOO Vympel

This is a self-extracting archive and installer. The file has been seen being downloaded from www.vaultsfactorycentral.com and multiple other hosts.

File name:

57b94adc_stp.exe

Publisher:

Digital Wave Ltd (signed by OOO Vympel)

Product:

Free Video Editor

Description:

Free Video Editor Setup

Version:

1.4.48.620

MD5:

f4750e8abe789d5868c8f53f0d8c75e1

SHA-1:

7fc6a91e827ec536492fc4c5fe8df42532c4af70

SHA-256:

f367448430e4b6483566a4e0aafdf9a7c9870432759458683e7f7c984b12b373

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

5/15/2024 1:31:18 PM UTC (today)

File size:

26.7 MB (27,951,560 bytes)

Product version:

1.4.48.620

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\57b94adc_stp.exe

Digital Signature

Signed by:

OOO Vympel

Authority:

COMODO CA Limited

Valid from:

5/13/2016 3:00:00 AM

Valid to:

5/14/2017 2:59:59 AM

Subject:

CN=OOO Vympel, O=OOO Vympel, STREET="Krasnoselskaya, 11b", L=Nizhny Novgorod, S=Nizhny Novgorod Oblast, PostalCode=603022, C=RU

Issuer:

CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00E1BF6A1CF62A73022BF732C0792B0D54

File PE Metadata

Compilation timestamp:

1/15/2016 11:22:50 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

786432:Z9XmuKkVufYEHFCBt2dR1ZTWEOm1Ae4Xr9X2sDk4:PjuwElCn2dU9SAe4XFw4

Entry address:

0x113BC

Entry point:

55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 34, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 1E, D8, FF, FF, E8, 6D, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 33, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 54, 86... 
[+]

Entropy:

7.9990

Developed / compiled with:

Microsoft Visual C++

Code size:

63.5 KB (65,024 bytes)

The file 57b94adc_stp.exe has been seen being distributed by the following 15 URLs.

http://www.vaultsfactorycentral.com/c?x=ZOG1Ush1B57zPdRiAynJuzXSjN7R59d97TfgFHcuqqM=&c=2jH4TaUg9SaFNR3PgGcqhYM8KWwaxLsXZJTmyaFKfqfcPzfASVNiP2270UyfFyI8N3KVN9RS1LgtsymillRLlz6o9oftpzYybhkuYaY8 8Ro2JvHgEw4JH/aAjoTc/76&downloadAs=FreeVideoEditor_1.4.47.617_s.exe&fallback_url=http://.../FreeVideoEditor.exe

http://www.vaultsfactorycentral.com/2N96MwypeRGoaCT3MTE dTj_lgNryPLY_gYwuAIjI3HOA7gnz0nCt98OBbzTXImm26mo0irIvlhOTzRnilVXmdyxxCf7nITKYhqreVs_EJkd0UYr02Evg1UkmZyA1Hcs9yPJwKIdDUDIsVZ0JWt0p1Tkv3JEFpxHJffPjUXb9fcZnbo9QQCr36Eu1VqRcQPgKt_c9 ij2udjahfVwy1e1CPoJBCMpjU_DkP5Yw5VIFxURp3mnEwyrb6Pzq2ZhRP l_HIc_LaG6HK3_XDUQG0qEbiUGRx9JVErr EjyfImVDbhPFlcTbqWNTUVwF SJYZT3oClrThjA8_JURYEB3HmQGJixJhTJ_Z3DyVGndrl_OTWfkG0wFJKqLhRmXcDFdwhwFcwPm1TUfzWa8j1YmEPDEj3BFv_w==-Gy0AAERPFttLI0Sh INkMzPgkAP2f5mkAVhNdR4oN55K8IhoSXn1kYIeY20P9AI=

http://www.vaultsfactorycentral.com/6Fzk3sO8A2QqJLYfSS07qtuxXURxRszNZfOp8iD1WAASQNd2CtoqE3QYRi6pUugn2O4_EFfKazDOnQ6ngMPhaUnigZzDWpURm5Snac76iXi1l2dR5gXqquFoL2Vp_FATJdBqv1itSm3BlR5 IxiAWhv mer0zF9C5j2eDME oDsv7Y2SjHn2SBeYMSWjR9sZY8ju4njCSHvTxei8NgoPOODeMUDs0WgjOF_G3lf13RDRou5jSqUrEpdd ot_3EhBU2qJbG h9pheVgSPjGE5q9GPlYi9U lIRxDyfDClfrJPiwrySthd7LVCOZx69dAhqJT HWSlW9GpCRxZjFcM3J2yQC4hUJlzKbGtp1yL3_QTnwccV8QpwA585yEL 1srUpOoksBgRiztXSv1O7Nq2Max6h3m8ymHjpybtgKDRHvzT5 bozw=-Gy0AAERPFttLI0Sh INkMzPgkAP2f5mkAVhNdR4oN55K8IhoSXn1kYIeY20P9AI=

http://www.download.fi/.../download.cfm?version_id=111577&software_id=8250&mirror_id=0&installer=0&perion=0&air_installer=0

http://r2.computerbild.de/exec/r2r.pl?m=w-cobi;u=http://d.computerbild.de/downloads/.../FreeVideoEditor_1.4.47.617_d.exe

http://www.vaultsfactorycentral.com/0Qtitd39vfUpgGsABvO_aCuvA1AyxPN2IFoIysx63nQlYccjc5YXRr2aOh7s7SDTzlrRylXkwHE7T88vedohPUkEMHPx35fr3ygWltjiQssbv2aQxPplLV_Y R5ZfQ__0N1SeeCzt8BC1hARqmt4kNKedKUabUp8fUDfETl56kb sx7Vu9JbHSzIHOgu3hXRG3XaUujtui3umF8A7PW43Y1TjkxhatqQPVsDj39nvrSVD14dKdxsjaFYJtYic0mTkIu2e9MVxKnZq5hEHwiQnhK7Q Lz12X DTWwPgwmDXTkTED8OvWn6gxcdTqH7yNLyZ4asCH2Ybp4mg2m5xSYGLja4OdZ LV1EjH74ICh4HZE17LnD9qsJklAJKQxL1CwFB3WLqS0 hDWNNnde2KAoKudtrTdyw==-Gy0AAERPFttLI0Sh INkMzPgkAP2f5mkAVhNdR4oN55K8IhoSXn1kYIeY20P9AI=

http://www.vaultsfactorycentral.com/oe5GDUUtnIEg UasH8tBzmCW2akRfWN15JbJdiCd 6a3C8XyYe7GSTKcDtFri0QTY0A1MBfcdBeXcj1gkrApiDCrwoEldZfDoYnyZgn2cQlE5RuSQcfmArqoYw6k4a4Q0qWw8NVw_DvgAz2_D5NufrGJ2M1dv5eWdtszQ5EZEzRanSt7X_yoVgTfTVBq8pxdyeUHejx0R_I_zDI7Ae s2eo22iXlmXf NdVFTJMgFJPYGX5nUmpe7vGFOnrUH1C PHVEGWiqD8kdRdOgToBamYWKoPD3uJ7S9vimElvzkOOS_IXWRRdGKJ_l2pVMoP2PDZ3hhpUR3IpkVkxNfhmNNLtP8XbTtnYY g0chCuNq_1arp1_ZLgJ2cvmHS4L92qn1qN9WZm36WZNYxFMnHbN6Dpe7WHCkA==-Gy0AAERPFttLI0Sh INkMzPgkAP2f5mkAVhNdR4oN55K8IhoSXn1kYIeY20P9AI=

http://www.vaultsfactorycentral.com/HGpDlU_iQHqCeuH8C KSAsNufH4LntAR1lL6O7aCdjJ1WcdRKfY0LUV8uhOQWTwXW4f8JiI97jidAWfFkF8axQn4XQuOZ5llZTAp6Z8WytyGIipHrVqbMlaN_PTW5DKMFF87jweDASfrXaVfYBfW7hQIHO4CR0Ng9Spp020vzMkwGzp79OkT7qWCOhv5sp0hyrYA7ueyDWGbRs3VqyPUDYlcIgnj4TX0K0gK5LE857Lxp6s8SqRwRx8ll MOZekHVaHq5Z1GFLYejYU0e pKzauyLlYmP7tQdD3e3hA2jbWqrKAsPqRzawVTU1ftIKu4VPOjUtmffCQxCKInmGrMp5J6dTnKpWxtcHdfgu3oUtIJZ1TD0CGIm3 XV 7cHotvS1JUSpgz1VNy104XllkVd4DutA1iAgTHpuUNYcDEN 7hPLdo_Yg=-Gy0AAERPFttLI0Sh INkMzPgkAP2f5mkAVhNdR4oN55K8IhoSXn1kYIeY20P9AI=

http://www.vaultsfactorycentral.com/mZ7qxuDS0hRj9bWoHPserQPCiGA5yEMNhC9YD3UMX311nZWQ4IIW B62HBAgpIDyQNsJW91ldmyBbd7lP2vlMT4CJD8FT1N2JFiyqjijNgXYGa121fqwD94FmW2faFrufz2ZI3BYiKuVFevpMqd_nGineE9qzVK7psDsNylnuQoQfv6kXowrraEYFu828KRpnxAZdjl8m g_6BNMdsoHXwfjX9veST512VR0y1txj3SvU_PMKvLBN4FfX4QHGBp587cmhjLLz4ZyGcAZROqcaEyh_K05xv8Qkmv_iFQG7rmSHbt0SpKHi3_0fO_z7snjwRDcn3mpcMX 4Oa5ztYsP6vyYBlKCqnl2 7Bi7UUElVKwJvBJjGJZH_aB7QT EWSsD3ymq2CFYn7ssjHO0eRsDBN NyDxg==-Gy0AAERPFttLI0Sh INkMzPgkAP2f5mkAVhNdR4oN55K8IhoSXn1kYIeY20P9AI=

http://www.vaultsfactorycentral.com/XK__sWM_bS5qOCIBcjvLmANWyrQU2bTaAQ 3hCYo36Gh4nu3_jLHlRjQDTRluP2OjkjLAn7uMni4F89wM6aRLn OqDsBeHSWTwtEB1sTRVJdFSIBN06fkP1O2rk RPL9bsOBe5dPMJsb1aeKhQoiCEKjNQ6hxNAcsaO7tBGIcodvlHyLgNLh5Vu6wQV7lfX7ygtupnn51wvzSNKWnQywj3vYC0pPV4q0q7TgfFVRv0 PAqOFr_UfK3_rHIWeMoDKMDi0GOLpUgE3DsMxM1HhJUoxLYHc3zzVeNm4WS8hxYw6GuIBOMDaxP92wh7dSAJyrAs g8LWG06As1xyWjrsI6T3j0e4bt8C0jY3BeXvBxMBO7cliGoXb00WNScNCv7IJ3S Rhns5yWteg28Fp3gdcEv5hgPEg==-Gy0AAERPFttLI0Sh INkMzPgkAP2f5mkAVhNdR4oN55K8IhoSXn1kYIeY20P9AI=

http://www.vaultsfactorycentral.com/VQKPDoPbiVxs55rlj6EDMmyhxydBu 7wiqr oRm73Ymi 8Ne934r4lZyvftSwC_I qued8zGIyyDgiiUQ2 A__H Jv_k 8dVso3Dn0Wpm_CnQZCcIIRbp2nK9V_znKPuVQuWFsNiZD7zyV_XF4rjy00_JI7hjOoKhcY7Uqa7a_9I6yUNByo_85uE0jMQ_2e0xGpLEVU33AV_JEk CApogRsbwYSa0tS4fOr58b_iKIPV 22oUURpV17MGgivUXNRNP63VMZ_b3wWTB12sfd6FFcje3NK8zvNa5Y8yn15Bopm7LPx9MXmFRfveMhZsdCXAQBWQhnRmpzGaIJCzMCMSBYJgUHUbL2Qx729SdrPITatjwykT3Wh4sQojE44HCU3XovdSAZ_fxPOHYwADBgoLrZGssfiFg==-Gy0AAERPFttLI0Sh INkMzPgkAP2f5mkAVhNdR4oN55K8IhoSXn1kYIeY20P9AI=

http://www.vaultsfactorycentral.com/Vptv5DQh45fy1l4KJzA0Vbu0oUNha3HbPCmyUA6tcV25tyUevcylO8mwyDgxirWzWIRKFE9CbfIuLY0xjZ0BH9VGn5gLQfWXAXoGlJIq6NuQ 8xg6yvVaPIiCyU_GBp0TJCEq4j9_O4_KTpgBmE16mnopnsPc5M9zulWDgBRqTUZ 5qn_285BhcOQARFAeO6bU18K0qVdk_QgUajTTqwE6o88q2H9LyoFzWbIta6Ypo6_TWYQjcq_ZRc5UCUDedThL7cLy8y_h6bJ1lw wwaBNaeDtLMdNtY r6mc1lpnoH9G46L8 _gr3JbWL Y6TS0EOI2IvVRYznlvzaktXAXviGBKb7amOM5_GHJqOavBYABeM3gUkpszUKX6OCR4uziS5HBOyAZiGGRB2iw1vbp4 UpQQR2Cg==-Gy0AAERPFttLI0Sh INkMzPgkAP2f5mkAVhNdR4oN55K8IhoSXn1kYIeY20P9AI=

http://www.vaultsfactorycentral.com/zanZ70bSHKAKtyFW8MAT1U42yTEWudq969PknWX4pmx_rxDxEEqpmIphntN8jg1st56KcuDRlowQklqQnLyBfxU8S9K0LhmyAWT0ACgNuAhns5_eAoUsExfc7GMuAuUbDmoJR2ZtC4iQg7Nl4viXPNhxuFBenRjPnVOuC5daM8oYT0wgAyQkSmj76dUPnXPdYLSh4tbJznwpfSCJA36NxYMZTjXaZgppSyHE8wChaWT21vZ3ERynUDPJPyViI15pawHonUZnEF1eYf4l3GIprTiPBGkgNXF8MZAmdtGaSqoly0g6KJfpgckSEYWVw9cLEIiHfH4ya3CD3aryGxxqyH6gGb869049eOzkPk mPnfG3hgC1a5qGzjjuaD1cXzHurUNOu8acLE9T8aeIsOLzu9N IGHCuP_N4SLp_lcJhYrDqweKFY=-Gy0AAERPFttLI0Sh INkMzPgkAP2f5mkAVhNdR4oN55K8IhoSXn1kYIeY20P9AI=

http://www.vaultsfactorycentral.com/aE8SxRgVSO edaWHAk_KQEus6OA3slmZLkaRckgjCEJedpIuHkYkXNpw5YKkGntDxw0PGIFrjFnsp 37hUxgXuEm4XykuLGxnfMcW96ccNKhFsUIcjUN9JLB_jKAcfDZxnXcNwC1pZ29v 1kNKHxdwG7srFtorLg5kcDU8Kb1pglfyjGf7azEylHDr3exdqCVyqMnOvsKHifgOJCAoMHgIgUpqfgSLOSWlhyRJFjSFxoV2GtdjYLiu_bG9kLLPXz6JSGp3zn81njCPCRgo5ch563Ws_64Sts9uilZp19G9ObyA0F3PejH7Em7vDHwRf C48JF2NqrV04UXIH82s57HCC_LTf8ABojqRoVxSKDufJ9tL9NGbkWfTTTIMgT5ALVt nVNJ2xN3DcdmKuvaa4G319qkNqg==-Gy0AAERPFttLI0Sh INkMzPgkAP2f5mkAVhNdR4oN55K8IhoSXn1kYIeY20P9AI=

http://www.vaultsfactorycentral.com/GjJQEb_EMMp6mMRcdKwiyTXwBaLFcB9BGhitoV4GDsed9EcYIchf9_2Zh_OjuZBUdgg2fbkdM pJLdRHzNmmrd7YtrK08x7rBbAmaAaKMJjjY6L5VGAj8oOfdonENPLBf7pofWzRZTHY18FALbY4Ayi8QA_z14_G0ZKPS4jVLs mOEAAGVHZpZ7kO yfswepDDF2IrZWUNQATj Nb9dSPsg3NUwYS yRnNoVP34jb3y 8FtyLnFhmHpKDzrfzXm2UWfBuRkL5j66nsWD40TiAw1d2QT6Q_JQP4KRwBnAseupLwBIWiq0KGmcI YVNpC_0D84zfimM9pTGDznFf12BZCI8FH8xtFoSyh9Jr4nXvoti21HkqUCN5c33z4sI9UPjiCbQWb apqsnYi5KHtSnQno ai5eQ==-Gy0AAERPFttLI0Sh INkMzPgkAP2f5mkAVhNdR4oN55K8IhoSXn1kYIeY20P9AI=

Scan 57b94adc_stp.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.