home

setup_makemkv_v1.6.15.exe

MakeMKV

GuinpinSoft inc

This is a self-extracting archive and installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
Publisher:
GuinpinSoft inc

Product:
MakeMKV

Description:
MakeMKV installer

Version:
v1.6.15

MD5:
ce02a57ac50a5f83a6d84c31b4b32e2d

SHA-1:
0752e85dd4642d06a7f79fac0c21345ec39ff032

SHA-256:
6176e0edcbc78774850a9a5d54a3ec683272716d4c4ac8abf66c51d346c7dba5

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/18/2024 4:01:24 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Malware.XPACK/RDM!5.1
23.00.65.131220

File size:
3.9 MB (4,125,032 bytes)

Copyright:
Copyright (C) 2007-2011 GuinpinSoft inc

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\setup_makemkv_v1.6.15.exe

File PE Metadata
Compilation timestamp:
5/15/2010 2:38:28 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.56

CTPH (ssdeep):
98304:gTWItU2ukNG+CQvFZJ7Dd6FgLfD4BhbI7KlIhqvmg:gTWEukNnCQvp7Dd6OwBhbI7ib

Entry address:
0x4044

Entry point:
55, 89, E5, 57, 56, 53, 81, EC, AC, 01, 00, 00, E8, 97, 52, 00, 00, C7, 04, 24, 01, 80, 00, 00, E8, 43, 4F, 00, 00, 56, C7, 04, 24, 00, 00, 00, 00, E8, A6, 52, 00, 00, A3, 50, 5B, 42, 00, 53, C7, 04, 24, 08, 00, 00, 00, E8, 26, 32, 00, 00, A3, 00, 5C, 42, 00, 8D, 85, 84, FE, FF, FF, 51, C7, 44, 24, 10, 00, 00, 00, 00, C7, 44, 24, 0C, 60, 01, 00, 00, 89, 44, 24, 08, C7, 44, 24, 04, 00, 00, 00, 00, C7, 04, 24, A4, B2, 40, 00, E8, D0, 51, 00, 00, 83, EC, 14, C7, 44, 24, 04, A5, B2, 40, 00, C7, 04, 24, 30, 5C...
 
[+]

Entropy:
7.9962  (probably packed)

Code size:
33 KB (33,792 bytes)

The file setup_makemkv_v1.6.15.exe has been seen being distributed by the following 2 URLs.

http://gsf-cf.softonic.com/075/2e8/.../file?SD_used=0&channel=WEB&fdh=no&id_file=84629&instance=softonic_es&type=PROGRAM&Expires=1476409109&Signature=FxGY-vjFXa7313VEdpJiOW6OWyfs~yAmU9MELKop2oITRnEpl0kC5FMUGdSNjh7-IgZiiGnLaL9KHZJVU~pNvDFMeMqR2p7NHi1klTQyMw~5ZGll~oDGukoxuuXH7Xf3AexMvf5~OxB8QXF32QJ6ZJpb5sKB0UJALMDP5wwfw80_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=Setup_MakeMKV_v1.6.15.exe

http://www.makemkv.com/.../Setup_MakeMKV_v1.6.15.exe

Scan setup_makemkv_v1.6.15.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.