home

atube_catcher.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from download.atube.me.
MD5:
5f203ee1c4d12513dc3a5b2d0bd551dd

SHA-1:
0baa78e08686f0a86f38e49b16e628b9c4274d66

SHA-256:
d0ee3e40907bcfa2ab7a83eead2dbd1eea3d8527ce5bf639b881692057ff398e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 10:03:52 PM UTC  (today)

File size:
249.6 KB (255,552 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\atube_catcher.exe

File PE Metadata
Compilation timestamp:
7/14/2013 3:09:44 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6144:kH1yAQw8bSc1U8wrYIK3jrB/O5no5Nq8kUDpw96VjpMe/f0np/EGOf9NP9jT:csb11YrirBW+5A8kypw6VCe/Sp/ZOLVT

Entry address:
0x324D

Entry point:
66, 51, F9, 43, 13, F4, 1C, FE, 22, D7, 92, 73, 2F, 88, 1D, 38, 62, F5, D2, 2B, FC, 07, 46, 2B, 9E, 0F, 6B, 96, 51, 68, 06, 3F, E8, D3, 9C, A3, 2F, 85, 2A, B4, 2E, 55, 0F, 91, 9D, D8, FE, 75, FA, E5, AA, B6, 7D, E2, 7F, EC, A3, 9C, 14, 78, 5D, 4A, 52, 39, 0A, B7, 0F, C1, 7B, 4B, F7, F9, 20, 65, 4C, F2, 35, 04, 78, 1B, B0, 2B, 8C, A1, BF, AC, BF, A7, 53, 6D, B2, D1, 77, 55, 8D, CF, 2A, 29, 6C, 37, 63, A8, 14, E1, 1B, 93, 5B, 46, D3, E8, 21, 72, 43, 94, A6, 48, DB, 26, 32, 07, D4, 09, 51, 21, E9, CB, C2, 3D...
 
[+]

Entropy:
7.9928  (probably packed)

Code size:
23 KB (23,552 bytes)

The file atube_catcher.exe has been seen being distributed by the following URL.

http://download.atube.me/aTube_Catcher.exe

Scan atube_catcher.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.