» spotydl_setup.exe
Overview
Analysis
File Details
Downloads (70)

spotydl_setup.exe

Spotydl

spotydl.com

The application spotydl_setup.exe, “Spotydl Setup ” has been detected as a potentially unwanted program by 2 anti-malware scanners. The program is a setup application that uses the Inno Setup installer, however the file is not signed with an authenticode signature from a trusted source. The installer uses the InstallMonetizer platform which will donwload and install adware toolbars and other potentially unwanted software offers during setup. The file has been seen being downloaded from s6352.chomikuj.pl and multiple other hosts.

File name:

spotydl_setup.exe

Publisher:

spotydl.com

Product:

Spotydl

Description:

Spotydl Setup

Version:

0.9.36.0

MD5:

f4e932d52a3abd38419b0be74ef452c0

SHA-1:

bf84432e0d7b08c26f9943faca81207774bebef0

SHA-256:

2e70cd7d70b6837d87454d50f9021094ca27e0955c7f3e63441401542a368408

Scanner detections:

2 / 68

Status:

Potentially unwanted

Explanation:

Uses the InstallMonetizer distribution platform to bundle adware.

Analysis date:

4/26/2024 1:27:29 PM UTC (today)

Scan engine

Detection

Engine version

ESET NOD32

Win32/InstallMonetizer.AF

8.9634

Reason Heuristics

PUP.InstallMonetizer.Bundle (M)

16.3.10.15

File size:

27.3 MB (28,675,667 bytes)

Product version:

0.9.36.0

spotydl.com

File type:

Executable application (Win32 EXE)

Installer:

Inno Setup

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\spotydl_setup.exe

File PE Metadata

Compilation timestamp:

6/19/1992 11:22:17 PM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

786432:sTocw+sFWsgacFk59req/D8eT02Yc4pLZaIt:bcw9F5qkreqbqo4Nt

Entry address:

0xA5F8

Entry point:

55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, CE, 8A, FF, FF, E8, D5, 9C, FF, FF, E8, 64, 9F, FF, FF, E8, 07, A0, FF, FF, E8, A6, BF, FF, FF, E8, 11, E9, FF, FF, E8, 78, EA, FF, FF, 33, C0, 55, 68, C9, AC, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 92, AC, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, B2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, C4, 97, FF, FF, 8D, 55, F0, 33, C0, E8, B6, C5, FF, FF, 8B, 55... 
[+]

Entropy:

7.9999

Packer / compiler:

Inno Setup v5.x - Installer Maker

Code size:

39.5 KB (40,448 bytes)

The file spotydl_setup.exe has been seen being distributed by the following 50 URLs.

http://s6352.chomikuj.pl/File.aspx?e=4FLb0av15a9oCMwVZSmLcD6ryJk7aKsgT2wFFCsXbHsCFlaynGE2wBM9if8yqjdPmGsFRcYA17BZxqpASn_zEv14E-sXAEgcumvfn3urLMu9FujsSANzREtvoH2nWjNskW0xnX19oD8LXpuxQBcnVA&pv=2

http://s6352.chomikuj.pl/File.aspx?e=4FLb0av15a9oCMwVZSmLcD6ryJk7aKsgT2wFFCsXbHsathZD8w-7kMx3RdGP5b6CEtUVDKZuNjlTLPABtTzrqXDUQtQutfNy5JEFfMBvucbgyoVnQHi3bK_ZnVzWuei9O99hm7j42uMFiaDdvNbkOw&pv=2

http://download1743.mediafire.com/5xuse4pa5c9g/.../spotydl_setup.exe

http://www45.zippyshare.com/d/29733438/.../spotydl_setup.exe

http://s6352.chomikuj.pl/File.aspx?e=4FLb0av15a9oCMwVZSmLcD6ryJk7aKsgT2wFFCsXbHvUSC6Q3haJ7NdNybq_SYhYrSSk20NiYpKSEE8O8PSPwzlQlpmOZHhgxdeFc63hFQ1HXyRlItdgt7tWBtZh_M98SCozfLpLXpH73xdB85BeLA&pv=2

http://download2054.mediafire.com/u1xb8qbc8qrg/.../spotydl_setup By JTRtutoriales.exe

http://www.techspot.com/downloads/downloadnow/.../?evp=541a723bf69a9ea02f550243de268ecb&file=1

https://mega.nz/temporary/.../BRNkhLYK

https://mega.nz/temporary/.../h8BAnbQQ

http://download1815.mediafire.com/8vb4by5b99og/.../spotydl_setup By JTRtutoriales.exe

http://s6352.chomikuj.pl/File.aspx?e=4FLb0av15a9oCMwVZSmLcD6ryJk7aKsgT2wFFCsXbHugop-I4SG9CN-RA0iOqx9AgvTsTSvZ-96PzNmPjMVx7dHDgvDbPxOX-L5eB-6QzGToJwO1s6l5iEI5hEGexDy0rgwCB2W0_GzZJzRP7rNsfw&pv=2

http://www.techspot.com/downloads/downloadnow/.../?evp=68eac321e56025b4ef9474ae20051f96&file=1

http://download.informer.com/.../spotydl_setup.exe

http://download953.mediafire.com/2x2q0l5lbuwg/.../spotydl_setup.exe

https://mega.nz/temporary/.../oNQzjajB

http://download1044.mediafire.com/6gcqyqo4ln4g/.../spotydl_setup.exe

http://www.afterdawn.com/software/.../download.cfm?version_id=70281&software_id=6242&mirror_id=0&installer=0&perion=0

https://mega.nz/persistent/.../uBZHzLaI

http://www.techspot.com/downloads/downloadnow/.../?evp=edb2ed37deb36891a0c0bc2ade110514&file=1

https://mega.co.nz/persistent/.../uBZHzLaI

http://download1622.mediafire.com/91a51o3b0ljg/.../spotydl_setup.exe

http://www.afterdawn.com/software/.../download.cfm?version_id=70281&software_id=6242&mirror_id=0&installer=0&perion=0&air_installer=0

http://s6352.chomikuj.pl/File.aspx?e=4FLb0av15a9oCMwVZSmLcD6ryJk7aKsgT2wFFCsXbHue9lPivIaRtIPdQg_Ov0Md62zbJf2rzKtzuji_vqVvgYl_cPh-JmihMq5PedhpfL_5pzr_8gcfd9t7WeQN4BGJdJ-ghehx0u32dL2sGSZm1w&pv=2

http://download1838.mediafire.com/z2um0kw1s6pg/.../spotydl_setup.exe

https://mega.nz/temporary/.../uBZHzLaI

http://s6352.chomikuj.pl/File.aspx?e=4FLb0av15a9oCMwVZSmLcD6ryJk7aKsgT2wFFCsXbHt4bG2_9IlT1AVDWGlJHYDK-4FDPvf6Geiw9c4II3-xvmUUg-CrPDRVseRxq-aSWY4yAomqRUNDc3xELdsC5eRi-aYcc-8k0x9RTWSZ2vUgsQ&pv=2

https://mega.nz/temporary/.../vUAzEaRR

http://download1467.mediafire.com/8oq759468zgg/.../spotydl_setup.exe

http://s6352.chomikuj.pl/File.aspx?e=4FLb0av15a9oCMwVZSmLcD6ryJk7aKsgT2wFFCsXbHtc8xgOI4DzHHEMO1jv-QzZVRI5NRYNYisUGg0huBj94Wdu7Pjqq9hFqIvPR2tyUYkMRufXxIyVfYFoctJnLsod5mpiWwIn2aQHgbyPjajyuA&pv=2

https://mega.nz/temporary/.../ClAiyCBb

Latest 30 of 70 download URLs

Remove spotydl_setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.