» hd video converter facto...o 2012 v3.2.0.0 full.exe
Overview
Analysis
File Details
Downloads (1)

hd video converter facto...o 2012 v3.2.0.0 full.exe

Filegetter

Maxiget Limited

This is a bundle installer which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed with minimal consent. The application hd video converter facto...o 2012 v3.2.0.0 full.exe, “Helps file downloading” by Maxiget Limited has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the New IT Desktop Setup installer. The file has been seen being downloaded from ds123.files-fast.net.

File name:

Publisher:

Company limited (signed by Maxiget Limited)

Product:

Filegetter

Description:

Helps file downloading

Version:

3, 4, 10, 0

MD5:

f081338d33bc21e929eaa43dbd256603

SHA-1:

4918acffb743e676645ce1b27a290a0fa65af6b7

SHA-256:

9b0ef4cf14e24df0162f25fe2093fc7f0af57c02433af277851cf5447f53a37a

Scanner detections:

1 / 68

Status:

Adware

Explanation:

This is a modified installer version of the software and bundles additional offers including adware.

Description:

This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:

4/24/2024 12:56:08 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.New IT Limited.Maxiget.Bundler (M)

16.5.18.11

File size:

860.5 KB (881,128 bytes)

Product version:

3, 4, 10, 0

2014

Trademarks:

Company(C)

Original file name:

FilegetterInstrumnet

File type:

Executable application (Win32 EXE)

Bundler/Installer:

New IT Desktop Setup

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\hd video converter facto...o 2012 v3.2.0.0 full.exe

Digital Signature

Signed by:

Maxiget Limited

Authority:

GoDaddy.com, Inc.

Valid from:

6/3/2014 9:41:06 AM

Valid to:

8/15/2016 7:41:32 AM

Subject:

CN=Maxiget Limited, O=Maxiget Limited, L=Limassol, S=Cyprus, C=CY

Issuer:

CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:

043F9C868704FA

File PE Metadata

Compilation timestamp:

6/26/2014 10:07:00 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

12288:cIK7uc8CF4dn5x8I3OGsGXAZWURNd+XJzeNpJ0Ku9kCdjTcxDwBSLpAw08iYtaql:cIKKcjon5x8kGKy7d+XGCVTADw48FSaw

Entry address:

0x1C3000

Entry point:

83, EC, 04, 50, 53, E8, 01, 00, 00, 00, CC, 58, 89, C3, 40, 2D, 00, 90, 09, 00, 2D, AF, 0D, 0C, 10, 05, A4, 0D, 0C, 10, 80, 3B, CC, 75, 19, C6, 03, 00, BB, 00, 10, 00, 00, 68, 6C, 82, 9D, 6E, 68, 1B, 73, B2, 46, 53, 50, E8, 0A, 00, 00, 00, 83, C0, 00, 89, 44, 24, 08, 5B, 58, C3, 55, 89, E5, 50, 53, 51, 56, 8B, 75, 08, 8B, 4D, 0C, C1, E9, 02, 8B, 45, 10, 8B, 5D, 14, 85, C9, 74, 0A, 31, 06, 01, 1E, 83, C6, 04, 49, EB, F2, 5E, 59, 5B, 58, C9, C2, 10, 00, C1, 69, 26, D7, 86, C7, DF, 37, BC, 8E, AD, 13, FB, 00... 
[+]

Code size:

249.5 KB (255,488 bytes)

The file hd video converter facto...o 2012 v3.2.0.0 full.exe has been seen being distributed by the following URL.

https://ds123.files-fast.net/.../HD Video Converter Facto...O 2012 v3.2.0.0 Full.exe

Remove hd video converter facto...o 2012 v3.2.0.0 full.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.