» fyd4b1.tmp.exe
Overview
Analysis
File Details

fyd4b1.tmp.exe

Free YouTube Downloader

Vitzo LLC

The application fyd4b1.tmp.exe, “Free YouTube Downloader Setup ” by Vitzo has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software.

File name:

fyd4b1.tmp.exe

Publisher:

HOW Inc. (signed by Vitzo LLC)

Product:

Free YouTube Downloader

Description:

Free YouTube Downloader Setup

MD5:

5bf214c2f2f8ef9ed53064e6453d98f0

SHA-1:

d382b7c117e37b4a3d7049b51515ea20cdd50e99

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

5/22/2024 1:51:22 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.How.FYTD (M)

17.3.2.17

File size:

1 MB (1,061,848 bytes)

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\Documents and Settings\{user}\Local settings\temp\fyd4b1.tmp.exe

Digital Signature

Signed by:

Vitzo LLC

Authority:

COMODO CA Limited

Valid from:

2/18/2016 1:00:00 AM

Valid to:

2/18/2018 12:59:59 AM

Subject:

CN=Vitzo LLC, O=Vitzo LLC, STREET=28 W Ayre St., STREET=Suite 23661, L=Wilmington, S=Delaware, PostalCode=19804, C=US

Issuer:

CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

7FC68B9A31EF116CA1B2E1123107AFE3

File PE Metadata

Compilation timestamp:

4/6/2016 4:39:04 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0x44000

Entry point:

68, 92, 5D, 3B, 00, 58, 90, 90, BA, 1E, 40, 44, 00, 90, BF, 98, 05, 00, 00, 90, 90, 31, 04, 3A, 83, EF, 04, 90, 90, 75, F6, 90, 90, 90, 7A, 20, 3A, 00, 92, 5D, 3B, 00, 92, 5D, 7B, 00, 4E, 4A, 3A, 00, 4A, 20, 36, 00, 4A, DE, 36, 00, 92, ED, 39, 00, 6D, A2, C4, FF, AA, CE, 7A, 00, 64, C8, 7A, 00, 92, CB, 7A, 00, B6, 4A, 3A, 00, 66, C8, 3A, 00, 6C, C8, 3A, 00, AA, 44, 3A, 00, 66, C8, 3A, 00, 6C, C8, 3A, 00, 92, 5D, 3B, 00, 92, 5D, 3B, 00, 92, 5D, 3B, 00, 92, 5D, 3B, 00, 92, 5D, 3B, 00, 92, 5D, 3B, 00, 92, 5D... 
[+]

Code size:

65 KB (66,560 bytes)

Remove fyd4b1.tmp.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.