» mp4creator.exe
Overview
Analysis
File Details

mp4creator.exe

Thawte Freemail Member

The executable mp4creator.exe has been detected as malware by 10 anti-virus scanners.

File name:

mp4creator.exe

Publisher:

Thawte Freemail Member (signed and verified)

MD5:

a82cea406134719f0536804d17631642

SHA-1:

c3748ce9e735f468f1d15eee5847a879e41f8b51

SHA-256:

f0f84b904c39977fe83832a73c83593f3bd75c9b443e5bcf85a046b419185f36

Scanner detections:

10 / 68

Status:

Malware

Analysis date:

4/25/2024 4:16:40 AM UTC (today)

Scan engine

Detection

Engine version

AhnLab V3 Security

Win32/Kashu.E

15.07.21

AVG

Win32/Sality

2016.0.3041

Baidu Antivirus

Virus.Win32.Sality.$Emu

4.0.3.15721

ESET NOD32

Win32/Sality.NBA

9.9744

G Data

Win32.Sality

15.7.24

IKARUS anti.virus

Virus.Win32.Sality

t3scan.1.6.1.0

Panda Antivirus

W32/Sality.AA

15.07.21.08

Qihoo 360 Security

Malware.QVM19.Gen

1.0.0.1015

Vba32 AntiVirus

Virus.Win32.Sality.bakc

3.12.26.0

ViRobot

Win32.Sality.N

2011.4.7.4223

File size:

477.3 KB (488,744 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\ffsetup220\ffmodules\mp4creator.exe

Digital Signature

Signed by:

Thawte Freemail Member

Authority:

Thawte Consulting (Pty) Ltd.

Valid from:

7/2/2008 9:33:55 PM

Valid to:

7/2/2009 9:33:55 PM

Subject:

E=crypto@dvbportal.de, CN=Thawte Freemail Member

Issuer:

CN=Thawte Personal Freemail Issuing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:

19BACB050CF1BB4790160B76AB90C626

File PE Metadata

Compilation timestamp:

9/26/2008 1:45:51 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

8.0

CTPH (ssdeep):

12288:pQe3xMLd3+4X8hf6/1c54cbosJY3iCoJOuwi+ytDlDX9dXkx/FzXOY0FCjoEVYVk:+sPlnT/jhPsJh2GPe+vj

Entry address:

0x44BE9

Entry point:

E8, 1D, A1, 00, 00, E9, 40, FE, FF, FF, 55, 8B, EC, 51, 83, 65, FC, 00, 53, 8B, 5D, 10, 85, DB, 75, 07, 33, C0, E9, 9A, 00, 00, 00, 83, FB, 04, 57, 72, 75, 8D, 7B, FC, 85, FF, 76, 6E, 8B, 4D, 0C, 8B, 45, 08, 8A, 10, 83, C0, 04, 83, C1, 04, 84, D2, 74, 52, 3A, 51, FC, 75, 4D, 8A, 50, FD, 84, D2, 74, 3C, 3A, 51, FD, 75, 37, 8A, 50, FE, 84, D2, 74, 26, 3A, 51, FE, 75, 21, 8A, 50, FF, 84, D2, 74, 10, 3A, 51, FF, 75, 0B, 83, 45, FC, 04, 39, 7D, FC, 72, C2, EB, 3F, 0F, B6, 40, FF, 0F, B6, 49, FF, EB, 46, 0F, B6... 
[+]

Code size:

364 KB (372,736 bytes)

Remove mp4creator.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.