home

freeyoutubetomp3converter33.exe

Free YouTube to MP3 Converter 3.11.33.1005

DVDVideoSoft Ltd.

The application freeyoutubetomp3converter33.exe, “Free YouTube to MP3 Converter 3.11.33.1005 Setup ” by DVDVideoSoft has been detected as a potentially unwanted program by 3 anti-malware scanners. This is a setup and installation application and has been known to bundle potentially unwanted software. The installer uses the OpenCandy monitzation platform which will donwload and install offers in the setup for potentially unwanted software including ad/search-supported toolbars. The file has been seen being downloaded from dvdvideosoft.com and multiple other hosts.
Publisher:
DVDVideoSoft Ltd.   (signed by DVDVideoSoft Ltd.)

Product:
Free YouTube to MP3 Converter 3.11.33.1005

Description:
Free YouTube to MP3 Converter 3.11.33.1005 Setup

Version:
3.11.33.1005

MD5:
eca92084e99abf41fe9c22a5f4cd7099

SHA-1:
ef476640e69604879c540915c4bcba9cf9f6a332

SHA-256:
a958835bbb5fa31dd3eca197ccec63511d3b83066714421b706ccc07f859cb04

Scanner detections:
3 / 68

Status:
Potentially unwanted

Explanation:
Packages the OpenCandy software bundler that offers to install additional software and may include web browser add-ons and toolbars which display advertising (based on publisher settings and geo context).

Analysis date:
4/18/2024 4:31:47 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/OpenCandy
8.8998

Reason Heuristics
PUP.OpenCandy.Installer (L)
16.11.28.22

Trend Micro House Call
HV_ZYX_CA25275E.TOMC
7.2.4

File size:
19.7 MB (20,664,552 bytes)

Product version:
3.11.33.1005

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\freeyoutubetomp3converter33.exe

Digital Signature
Signed by:
DVDVideoSoft Ltd.

Authority:
GlobalSign nv-sa

Valid from:
7/16/2010 8:34:18 AM

Valid to:
7/16/2013 8:34:16 AM

Subject:
E=question@dvdvideosoft.com, CN=DVDVideoSoft Ltd., O=DVDVideoSoft Ltd., L=Roseau Valley, S=Dominica, C=DM

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
01000000000129DA2C9832

File PE Metadata
Compilation timestamp:
12/20/2011 3:16:50 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:PBqfUQrOJjUdkaqN9Vt3xsbxKu0M5IBgbDbJnJOaiHgIODTWWkBaDweM4rCwkya5:PBqfEoJqNRxslKuJqgbDbJnqHU6WkBE2

Entry address:
0x16478

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, B0, 52, 41, 00, E8, AC, 03, FF, FF, 33, C0, 55, 68, 45, 6B, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 01, 6B, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, AB, 41, 00, E8, 4E, EC, FF, FF, E8, F5, E7, FF, FF, 8D, 55, EC, 33, C0, E8, 7F, 84, FF, FF, 8B, 55, EC, B8, AC, D6, 41, 00, E8, E2, E9, FE, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, AC, D6, 41, 00, B2, 01...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
84 KB (86,016 bytes)

The file freeyoutubetomp3converter33.exe has been seen being distributed by the following 4 URLs.

http://dvdvideosoft.com/.../FreeYouTubetoMP3Converter.exe

http://downloads.dvdvideosoft.com/FreeYouTubeToMP3Converter.exe

http://download.dvdvideosoft.com/FreeYouTubeToMP3Converter.exe

http://dl.cdn.chip.de/downloads/.../FreeYouTubeToMP3Converter33.exe

Remove freeyoutubetomp3converter33.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.