home

mkvtoolnix-unicode-6.5.0-setup-1.exe

MKVToolNix

Moritz Bunkus

This is a setup program which is used to install the application. The file has been seen being downloaded from mega.nz and multiple other hosts.
Publisher:
Moritz Bunkus

Product:
MKVToolNix

Description:
MKVToolNix 6.5.0

Version:
6.5.0

MD5:
3cf46d0f5bb370ea37b7f4fc964b26b5

SHA-1:
d8465dbc40e1eb3ab96c5021b7bbed3161a3bc4b

SHA-256:
3f3a2c1a16748eeccefc4d68666836acedd60b1ca0e2314576377ecd91d7ad84

Scanner detections:
4 / 68

Status:
Clean  (4 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/27/2024 2:46:07 AM UTC  (today)

Scan engine
Detection
Engine version

Panda Antivirus
Eicar.Mod
13.12.22.01

Quick Heal
EICAR Test File
12.13.12.00

Rising Antivirus
PE:Malware.XPACK/RDM!5.1
23.00.65.131220

Trend Micro House Call
TROJ_GEN.F47V1020
7.2.356

File size:
9.1 MB (9,590,883 bytes)

Product version:
6.5.0

Copyright:
Moritz Bunkus http://www.bunkus.org/videotools/mkvtoolnix/

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
12/18/2012 10:31:05 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.23

CTPH (ssdeep):
196608:/SaeRiPTdCB1S0n9FeFJsDbNp4VE93C3ay0WO0assfx:mET4y0bK8bNpsEdC3V2NssJ

Entry address:
0x4378

Entry point:
55, 89, E5, 57, 56, 53, 81, EC, AC, 01, 00, 00, E8, 57, 58, 00, 00, C7, 04, 24, 01, 80, 00, 00, E8, 03, 55, 00, 00, 53, C7, 04, 24, 00, 00, 00, 00, E8, 66, 58, 00, 00, 56, A3, 40, 1B, 44, 00, C7, 04, 24, 08, 00, 00, 00, E8, 5C, 3B, 00, 00, 57, A3, 9C, 1B, 44, 00, C7, 44, 24, 10, 00, 00, 00, 00, C7, 44, 24, 0C, 60, 01, 00, 00, 8D, 85, 88, FE, FF, FF, 89, 44, 24, 08, C7, 44, 24, 04, 00, 00, 00, 00, C7, 04, 24, 01, B3, 40, 00, E8, 90, 57, 00, 00, 83, EC, 14, C7, 44, 24, 04, 02, B3, 40, 00, C7, 04, 24, A8, 1B...
 
[+]

Entropy:
7.9850  (probably packed)

Code size:
35.5 KB (36,352 bytes)

The file mkvtoolnix-unicode-6.5.0-setup-1.exe has been seen being distributed by the following 11 URLs.

https://mega.nz/persistent/.../35wEWTjD

https://mega.nz/temporary/.../35wEWTjD

http://mirror6.fosshub.com/.../mkvtoolnix-unicode-6.5.0-setup-1.exe

http://mirror2.fosshub.com/.../mkvtoolnix-unicode-6.5.0-setup-1.exe

http://mirror4.fosshub.com/.../mkvtoolnix-unicode-6.5.0-setup-1.exe

http://www.videohelp.com/.../mkvtoolnix-unicode-6.5.0-setup-1.exe

http://mirror3.fosshub.com/.../mkvtoolnix-unicode-6.5.0-setup-1.exe

http://www.commentcamarche.net/download/.../telecharger-34055072-mkvtoolnix-mkvmerge

http://od.ccm2.net/www.commentcamarche.net/download/.../mkvtoolnix-unicode-6.5.0-setup-1.exe

http://www.fosshub.com/.../mkvtoolnix-unicode-6.5.0-setup-1.exe

http://mirror1.fosshub.com/.../mkvtoolnix-unicode-6.5.0-setup-1.exe

Scan mkvtoolnix-unicode-6.5.0-setup-1.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.