» softonicdownloader_for_mkv-player.exe
Overview
Analysis
File Details
Downloads (1)

softonicdownloader_for_mkv-player.exe

The application softonicdownloader_for_mkv-player.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup program which is used to install the application. The file has been seen being downloaded from mkv-player.en.softonic.com.

File name:

MD5:

64bb967e30a636c6249843c6b5643f8c

SHA-1:

4616a71c03d1dd5960b45e2a1b9f25d1cc485c53

SHA-256:

703e3bce89ffd2273f54516d9e0d40490fe475d9bdcdd1b3c4dd70d258b2f897

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

4/23/2024 10:27:34 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Softonic.Bundler.Meta (L)

16.7.10.18

File size:

342.2 KB (350,404 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\softonicdownloader_for_mkv-player.exe

File PE Metadata

Compilation timestamp:

5/21/2014 10:24:17 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

6144:8q/DXvwnQXWYyl8i3vi38Jg8gD8eeBw9qxoIM85YVAem0eltoSiIDK0OJGR:8qknQVSvi3RD8eaw9bINe9eltoSiXX4

Entry address:

0xEED40

Entry point:

00, 00, 00, 00, 00, 00, 44, B4, FB, 5D, BE, FC, 73, C7, FC, 7F, CC, FD, 93, C8, EA, DF, DE, DE, CA, CA, CA, B9, A9, 91, E1, DD, D8, CE, D4, D8, 54, BA, FB, 66, C1, FC, 4C, B7, FB, 46, B4, FB, 66, 9B, AE, AE, 78, 2D, D2, 91, 36, F5, A9, 3F, F5, A9, 3F, F8, C3, 79, D8, 9D, 4A, B8, 7F, 2F, B8, 7F, 2F, B8, 7F, 2F, B8, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, D8, 9C, 4A, F8, C0, 74, F7, BC, 6A, F7, B8, 60, F7, B6, 5C, D8, 9D, 4A, B8, 7F, 2F, B8, 7F, 2F, B8, 7F, 2F, B8, 7F, 2F, B8... 
[+]

Entropy:

7.9630 (probably packed)

Code size:

308 KB (315,392 bytes)

The file softonicdownloader_for_mkv-player.exe has been seen being distributed by the following URL.

http://mkv-player.en.softonic.com/universaldownloader-launch

Remove softonicdownloader_for_mkv-player.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.