home

mkvplayersetupd.exe

MKV Player

The application mkvplayersetupd.exe, “MKV Player Setup ” has been detected as a potentially unwanted program by 17 anti-malware scanners. This is a self-extracting archive and installer, however the file is not signed with an authenticode signature from a trusted source. Part of RelevantKnowledge, a program typically installed via a software bundle (with the user's knowledge should they read the EULA) and will run in the background collecting and monitoring information about the user's behavior in order to build an extensive profile.
Product:
MKV Player

Description:
MKV Player Setup

Version:
2.1.17

MD5:
67f296fecf0182827d4505b583d995ad

SHA-1:
1d8358aa3eb2d75c93c19bd0ec8977c25a258df0

SHA-256:
47a8914b3b4fd50009dae646645aa8a355560e53e84383239c5ff750029b8d39

Scanner detections:
17 / 68

Status:
Potentially unwanted

Analysis date:
4/19/2024 3:41:14 PM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Trojan.Agent
7.1.1

Avira AntiVirus
ADSPY/NaviPromo.J
7.11.154.218

avast!
Win32:Relevant-S [PUP]
2014.9-150511

AVG
RelevantKnowledge
2016.0.3113

ESET NOD32
Win32/BundleLoader.B potentially unwanted
9.11594

Fortinet FortiGate
Riskware/RK
5/11/2015

G Data
Win32.Application.Agent.AAK1S6
15.5.25

herdProtect (fuzzy)
variant of mkvplayer17setupd.exe
2015.8.8.12

K7 AntiVirus
Riskware
13.1712403

Kaspersky
not-a-virus:WebToolbar.Win32.RK
14.0.0.2058

McAfee
Artemis!67F296FECF01
5600.6769

Qihoo 360 Security
Win32/Virus.WebToolbar.9c5
1.0.0.1015

Rising Antivirus
PE:Trojan.Win32.SpeedingUpMyPC.a!1075357520
23.00.65.15509

Sophos
Generic PUA BN
4.98

Trend Micro House Call
TROJ_GEN.R047H07EE14
7.2.131

Trend Micro
TROJ_GEN.R08NC0ECQ15
10.465.11

VIPRE Antivirus
Trojan.Win32.Generic
40044

File size:
6.4 MB (6,740,494 bytes)

Product version:
2.1.17

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\mkvplayersetupd.exe

File PE Metadata
Compilation timestamp:
10/13/2013 12:19:32 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:d1CxvEAj8WYKcbtQMoRMAPX9zXDNx393OF4Fyw5Au28SxDL:d1EvJj8TjbW7Xxe2ywuGSB

Entry address:
0x113BC

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 2C, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 16, D8, FF, FF, E8, 65, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 2B, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 50, 86...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
63.5 KB (65,024 bytes)

The file mkvplayersetupd.exe has been seen being distributed by the following 7 URLs.

http://mkv-player.ar.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-flqWPpZ-jl5Q=

http://mkv-player.el.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-flqeHoZ2gkZ0=

http://mkv-player.ru.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-flqiIoKWolZY=

http://soft.mydiv.net/win/dlfilee9a1a_258069/.../MKVPlayerSetupD.exe

http://www.vsevensoft.com/.../MKVPlayerSetupD.exe

http://mkv-player.id.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-flqiQpaCfl5Y=

http://www.vsevensoft.com/.../MKVPlayerSetup.exe

Remove mkvplayersetupd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.