home

anytogif_setup_ad.exe

Any To GIF

Ye Yizhou

The application anytogif_setup_ad.exe, “Any To GIF Setup ” by Ye Yizhou has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. The file has been seen being downloaded from www.softonic.com and multiple other hosts.
Publisher:
zxt2007.com   (signed by Ye Yizhou)

Product:
Any To GIF

Description:
Any To GIF Setup

Version:
1.0.4.0

MD5:
a04ba29bf308193ec918f32f2794a677

SHA-1:
e4442366bdb4cab879e44686e57eb38d079531a9

SHA-256:
9a7a610626ad2ea180e65dac3b59aedc29da4eb3942275383d77116433745183

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/26/2024 7:37:56 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Bundler.YeYizhou.Installer.Meta (M)
16.7.8.10

File size:
1.5 MB (1,580,312 bytes)

Product version:
1.0.4.0

Copyright:
Copyright 2013-2015 ZXT2007.com.

File type:
Executable application (Win32 EXE)

Language:
Swedish (Sweden)

Common path:
C:\users\{user}\downloads\anytogif_setup_ad.exe

Digital Signature
Signed by:
Ye Yizhou

Authority:
WoSign CA Limited

Valid from:
9/7/2015 5:00:33 AM

Valid to:
9/7/2016 5:00:33 AM

Subject:
CN=Ye Yizhou, L=Longyou, S=Zhejiang, C=CN

Issuer:
CN=WoSign Class 2 Code Signing CA G2, O=WoSign CA Limited, C=CN

Serial number:
304E7576E2082A9B6E87C0FFCC4B397C

File PE Metadata
Compilation timestamp:
7/16/2015 3:24:20 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:wxGtOnSFvdGsIPJP2HbjuD9VNydnxcMT93ozUHkqKRejZp0DIGbCHoJrfRaBW:VUSFFCPJP2HbjuD9nBxgKRwKMGeMRao

Entry address:
0x113BC

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 34, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 1E, D8, FF, FF, E8, 6D, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 33, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 54, 86...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
63.5 KB (65,024 bytes)

The file anytogif_setup_ad.exe has been seen being distributed by the following 21 URLs.

http://www.softonic.com/sads/tracker.php?ev=c&co=AR&sid=345af67db03f36d3fe2c729242e7fd4a&upv=48c3b465fe209f23bb2c561ef8ed8e39&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBAC9B15663BFCC32A4B420C96190DC24F2B4DF1BFC96A568E3F48CAAC0E47F2F99C382FCF8E23069F5B742DCA1129F2ACA865A2C6EBAB2882D9E8754D0CA4030CB2624CA83B513D7D9C1387C962C77F650D0B96203F46A6C4ACB241BB4FDD4CB4CE95EFCC6B705BC9DCBEC45E936ACBA3254CA44B87A7022BCC06AD5EC70D93AD3435DB369A1B4A580338442B67D2C441E&h=611D5C80F7868A8B789F152AB5054D9D120171D016792161D2CA7D82E61DE329&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://fr.softonic.com/sads/tracker.php?ev=c&co=RU&sid=3a0998788018ed0a7be13c2860ec8f40&upv=ad1d9827c04156c916763df29c30f187&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA6CC51E5F2F1CC0781D87EC9BB0C214C631E233541EE5EDA1BB5B7AFF02804CBEB4F813F1EF4B82168CF71F73933711E64FF24A5C4D117721489DE194EFC310DB4942DEB63A44CB32E17724091B668DD23190162084F2F1BA7BD0FEC15D2628E69CE7D8D51A0E002C6AF84C64FD42A4FAF947184F616E88EEC70256936317E25FA92EB2EE4C635B0407608B68D36BC9D1BE3FABC7D6BD4D208508FD5EDF6E5E44&h=F401CDD042F67DE0996F34D3E2B6E9B2F7D7DB58BD4EA9FC24009D8DEC9F3D9D&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://en.softonic.com/sads/tracker.php?ev=c&co=ID&sid=07fc0115a383f3500c17c437e39fe7bb&upv=1bba95703a95015722916ceeb16af637&z=results&sk=0&abp=0&params=F39B2A32BFC101987B1458170C278E0313858C8F8C1052086E0A941149460CE7510D1990FA7950706077490C398CB5F85408B25BF9D1F77252202DECDB7EDFC9CBEE07C46FDB90F53CE2A0934C77300EE590F70C61D8B809E48B4B6F7DA13CDE6AA93487EF278EB65313901CCA4A4E6B67E210A278AEB5B0CC4E1B91228349076CBE135F3537D3FBC84F5E4BA5790C050890DD772C310F4E5F64430F573F9A9B&h=FA14CAC01D82AAE41249B43B0D05D20449E8C61486A1AB26C32031C0B420EB9C&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://de.softonic.com/sads/tracker.php?ev=c&co=AT&sid=1229fa2ff8bc64b2cea59242e6347ad2&upv=cc568b03a247bcf5829cc2a70199f225&z=results&sk=0&abp=0&params=E58A21D548552342230FD9D405D3DC9DBF0100912393E5E5A847434D03018F522A92461DFC32B1BF56401CAD7AE53DA1E81D7C7376479C1991EF9832B560E7419435F4C34815246D1C4F6A8465BDD5A2B5B4911958AAC43208EC8723908F21944E4340A9DDC61555862C2590C0F54BFA218B4E2B6A792223175E2DFA636C77DE7DE7E40D55013DC1B0400E2D97A1386584A249382194D5E51032D4CBC59AFEF075B0D89748480D735886CD41E8F6603B&h=3A696A968CAF878F766142C8FA6D886671EC7D9C90417BEBCFE50CD53C80200D&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://fr.softonic.com/sads/tracker.php?ev=c&co=PL&sid=a8b5d669262fe9ec1b3c0b8babd39ed3&upv=3d292cc13e56e525e1bf104341dadd6b&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA6CC51E5F2F1CC0781D87EC9BB0C214C631E233541EE5EDA1BB5B7AFF02804CBE48137A983858851D2D259B94996A01B3ABBEBA48BA20ED5DDCE58C22570A1C86EB15FB6D983706331DADF9FC217B73878DEEC302DBB5FAB9EA81E13BAB7E14F6B3B93CD007E52905DCFF38B80753D2841F844A21D955E03580226FE8CE2FE9F11CF1383EFED3E198118A90E60E169133&h=D198A525BF16307390AB70B494E097FF24B9F162CCADFC731555FD80F80D8E40&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://en.softonic.com/sads/tracker.php?ev=c&co=PT&sid=c1ca25ae4af523a0e0e39e87efb3a4f4&upv=fcf1d8226d9c2447dd30604ed60ef5c6&z=results&sk=0&abp=0&params=F39B2A32BFC101987B1458170C278E0313858C8F8C1052086E0A941149460CE7510D1990FA7950706077490C398CB5F840F91E8227B5ED8C5951617D0B35929A4A0D77E8D543DDF4BF1A36FBBDB076AEF5D6F23540E3CC10807C8DF7B257C2642200F32FFDD153FB80F854629A252C926C52AE1ECE94B5A8A4048DD17D8C348C08232A25E341C2F4D936218E7A2168C99F0928911DC58A5BAD137013B917A9B5575DCB8126C7E8BBF222674963A5F42E&h=601804829198DC9ABBF4532C1563719FC2CA02B6077BC252755F571C869C453B&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://en.softonic.com/sads/tracker.php?ev=c&co=ID&sid=b4a6e31361a1767d1aed67b41f7e08ed&upv=3856f0af6ea9fe09bcf4070e7fdc9a4e&z=results&sk=0&abp=0&params=F39B2A32BFC101987B1458170C278E0313858C8F8C1052086E0A941149460CE7510D1990FA7950706077490C398CB5F8B3D4AAC05F7D24A981867E7490A194E194AEEB451818E12740461F3E0DC5FC983D800DAE41BA27770E293BBE0CE9C0F8B0FA5BB2EBC36CB5BCCF90313153EC105C7C319CAF075B5A423026B82DDB8F8951935AC1B66C502259065FB20A55F3E9BB47AABA90092E89E06A1F0A0473FF9B3F4E1A71FB24D3CC79B947C15FA17E4A&h=E76E6F55BC328405518F5D3B35EFA5B8DA18EE6140F5A91E43DC3E5839F7F612&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://en.softonic.com/sads/tracker.php?ev=c&co=ID&sid=d6d0eb91e66666318c26441c81aa78b8&upv=7e36efe84a42b90b33db6e9fc09b8af9&z=results&sk=0&abp=0&params=F39B2A32BFC101987B1458170C278E0313858C8F8C1052086E0A941149460CE7510D1990FA7950706077490C398CB5F8EB74548A279F55707338CC3D68610D9ECCF705787E759C0F9B1FA297D300731B26B61960B15A4C2A813759F1820169AE4BD5DCA4B123D3DFEF4322B0B2A3156214B1B9E4C6F0E88E233F76882F451F4C490C0FE4853305E45B802AD7D5DA28833812D7BE9C30B24641BA4154829D427C&h=9889C98B6519ED1F28F8879ED319A333783E88E4E9A6E66D36E836618313DD29&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://en.zxt2007.com/.../anytogif_setup.exe

http://en.softonic.com/sads/tracker.php?ev=c&co=MY&sid=6e46c6ddd43d8cb978c3a66c077fd398&upv=3fa95d20b9e382a91fb28de73bbeaf7f&z=results&sk=0&abp=0&params=F39B2A32BFC101987B1458170C278E0313858C8F8C1052086E0A941149460CE7510D1990FA7950706077490C398CB5F8153FEB3AA3B5055611A8B8E83E8AD9164FFA799C7C1043AB3B4F3D19A819E41881048CF73813963FAF0B5C4574A8DB50A81A4A9D4088A5BA33ECECD254FD3B1A4563405A16033C707D92AC6335C4DA5E698A546B19AF1BB2F42499C92A9BC2370A8A67B335A4EA8B2EFD1359470BCF34&h=4B571A6C793C08D89C499D452FE4EB292313C7C756AE47D06CC4F757370DC765&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://any-to-gif.softonic.com/descargar

http://www.softonic.com/sads/tracker.php?ev=c&co=MX&sid=e299f3f134f37b93b2430e01267c44b1&upv=1ddfc517b3d265d255ff10af67a6a08a&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBAC9B15663BFCC32A4B420C96190DC24F2B4DF1BFC96A568E3F48CAAC0E47F2F99A3487CBA6694A0D71624A4707D05B558AA792789779FB16C06ACA0DD9FFB25E72F35B01B0F95F04AED877169611927E29B309CF5A4722E433A698FD70133B9BDBFF9DA1A7FA50B33DD53337BF992883BAAA639A1AAC8913B4D7BDD920EE8DA242C2CFF8BAEB235FA298907D671000035A0B67EE0FDFDECBE6C8874CD63A33715&h=F47CFCFFB04202A70344CB29DDC286E50CDFC020EA07BCC3698FDAF4437CEFDC&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://any-to-gif.en.softonic.com/download

http://en.softonic.com/sads/tracker.php?ev=c&co=PL&sid=0a3b497d1b4180620f1cfffb0a5197ef&upv=874f055d4818d0eee4b1ec8dc4aca1bb&z=results&sk=0&abp=0&abt=3&eid=SWH-2097EN&params=F39B2A32BFC101987B1458170C278E0313858C8F8C1052086E0A941149460CE7510D1990FA7950706077490C398CB5F8F4D320C8693BF89635952C3B1C132CE8C1BEF8533EEC6130A16370E35B26A1CAE65C632BA4D2A7AA152BCF3F588065CFCF980FE49D787AD8512D80E31AA5F18D4AEEAD5FC1B6633635DDB83972A60982B93AEFBD1B3C7C3A229DD1A556DD1D683B98D9CE38FE404C340346DAEA2BCDE74FA23B86246D545A5458BF933C66C108&h=F3D4D38F979BF65FCD5930922A27A25C363F7F26DA813CE6424A648ACAC24E4C&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://en.softonic.com/sads/tracker.php?ev=c&co=PH&sid=8e03cb70cd2977fc33699055f3fa04a1&upv=954d3f9622e16f1fcc59e9482e28aed1&z=results&sk=0&abp=0&params=F39B2A32BFC101987B1458170C278E0313858C8F8C1052086E0A941149460CE7510D1990FA7950706077490C398CB5F8C6EBA20C87631E664A3F1EAF28A31853F392D778152869B8E549C4FADC68F6E2F90B5BA08DA9D213C4D3310D95B18BE1C4C6779386B04BCE709EBE639D92681BDB7AB9828A49DB0F5DBAD15305941B294E8D232C7B6573B1AB58EA310F0FD8ECE3AC876EA05D893DA18E28045C0CDC5A&h=24847278477F154236FF3AF5E5893BFC2EE94A82662CEF8F28BABE14D0BE3DB8&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=AR&sid=34711e6a91591fa76f927eaac94fbe53&upv=b5be16646c66ce71fca61ac823474bbf&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBAC9B15663BFCC32A4B420C96190DC24F2B4DF1BFC96A568E3F48CAAC0E47F2F99C382FCF8E23069F5B742DCA1129F2ACA78352AB42074E1A3C3D2D9D4104419E281356A839C6EE2731D058E402910ABD76502536B22521CA07A64C412D42378067D3E637C3FB9CFFD5C0094201F150AC533F9A8C5C506E50F3EF720332CDA0ACCC674EF0FA3F2650807F32A41B1C0A762&h=6E043E5A106B8E6CBAC58881648E8A12CAC8C688568EED9E5F021FE0BB5AA5D8&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://en.softonic.com/sads/tracker.php?ev=c&co=PL&sid=faebf04636a92c488eb2d91281d27599&upv=f25e84744634992c245ed742a9d15ce1&z=results&sk=0&abp=0&params=F39B2A32BFC101987B1458170C278E0313858C8F8C1052086E0A941149460CE7510D1990FA7950706077490C398CB5F8D74343D3A402233264E127E2EC68FD44D0CA60EFF3D49F7AF1DE2C069B7CAAA5C6F7851C17E079BB1CC0F40BC5E42042A9B0EE26118710E7078B083D19A9E4FE59E5E36EA9A0D2B7E8314F6AFD7EAB8FC177B0601ACC78B8D65B3DCF4B4FAA10DDF0DB81F7824A33C4EE8AFB5666356E&h=766ED0ABE7E67E63699496F119DAD241E9F66E54B2CAD6AC3C1D5ACBA448F53C&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://en.softonic.com/sads/tracker.php?ev=c&co=PL&sid=1bee0170e268649840efc9098e2fe9b3&upv=2bb32f0f380a1acc282f4e1d8a7bbefe&z=results&sk=0&abp=0&params=F39B2A32BFC101987B1458170C278E0313858C8F8C1052086E0A941149460CE7510D1990FA7950706077490C398CB5F8B45651F4994EEF21E8B13E3F1C4ABC6DC9CD29F1430686A169E60147C3D35323A28E7AEB14820B6C77190C8ED6290BDDA9141C48F89309F4BFCBB394C307763C50638C7955FD02E2CC758543732B792ABD618631B99BF54011DA183CE265EC46B4E7F72395D355C08E179E6CCDC62D11DC10C1B5C3EE48BA14A88C84F8E56E35&h=5F280BC4F1F4AF504111D06E850BC5EEE744F8B231DF40946A202E591307E476&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=AR&sid=b3163b20b15593e71e12fdeac94e3384&upv=9f425badc0547656b419a67c99fd9555&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBAC9B15663BFCC32A4B420C96190DC24F2B4DF1BFC96A568E3F48CAAC0E47F2F99F23B027D0EA13C2847EAE0419C2D6FD2FC757AACF0F362F29851A90261AEB17054BFC0522BC2AFC0C58D486EE99A6BA87BC4F0928F7310F167947F022E3BC1B2630B6E74BDFF78C62433B3DC166DB8BF48220631423CD7DF227A281548DC90571A3862C17E0FF37BB72093D5A5B977A8D9E059A9A8E7AF6B476558F8234BC204&h=4C60CC8F2BCAAEEA3C31CA7F1E343847C3E6272509CF8CF5BB5C41DB2FAE5A17&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=AR&sid=8d2f7fdaf735cece7ec94b0f7fe47891&upv=ccc2e23098053d21dca48cf5f6b8b217&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBAC9B15663BFCC32A4B420C96190DC24F2B4DF1BFC96A568E3F48CAAC0E47F2F994C9665B7564B42B08A12D2D7A783729468CF29747B6CC42619A728B510FB1ECCB5F8FF3883A618EA10BE41D451C3F60978F43BFB136FFDA88A1287F6E72F4186A2671D0F03130C1669925D246A3936C58F6BC224497167C1D4CC439783008766ED5CEC6CF0617AB6C3D55289F425ED7C379AFEC295CF6BB3F432D5437F6841A0&h=59F3313252DE28525DB2E919AED1811C18FD1452966CAE769A7B8C6E37AAFAEE&directdownload=1&f=69667320&d=http://en.zxt2007.com/.../anytogif_setup_ad.exe

Remove anytogif_setup_ad.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.