» universal-usb-installer-1.9.6.3.exe
Overview
Analysis
File Details
Downloads (1)

universal-usb-installer-1.9.6.3.exe

pendrivelinux.com

The executable universal-usb-installer-1.9.6.3.exe, “Universal Linux UFD Creator” has been detected as malware by 6 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from www.pendrivelinux.com.

File name:

Publisher:

pendrivelinux.com

Description:

Universal Linux UFD Creator

Version:

1.9.6.3

MD5:

58a15ce0f03a58cd0f963d4c36a847f5

SHA-1:

5bd60faaea77f9c4338aae8bccbc294ba8ff9da8

SHA-256:

dc3f66399de394b845316b521ea26276d3fdb1f5df248fff3686f5a860e936c1

Scanner detections:

6 / 68

Status:

Malware

Analysis date:

4/20/2024 12:48:12 AM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:SaliCode

160518-2

Emsisoft Anti-Malware

Win32.Sality

11.5.0.6191

ESET NOD32

Win32/Sality.NBA virus

8.0.319.0

F-Prot

W32/Sality.gen2

4.6.5.141

Microsoft Security Essentials

Threat.Undefined

1.225.283.0

Norman

Win32.Sality.3

28.05.2016 15:32:18

File size:

1.1 MB (1,166,782 bytes)

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\universal-usb-installer-1.9.6.3.exe

File PE Metadata

Compilation timestamp:

12/11/2015 10:11:55 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

24576:SKF5dbg5LwTaWhUE5KU6nVyViuqVKBLzTSjlnupNIL4qCw+3XGhjf:ZF5dbg50Gr4KU8VyouHBmw9Nc

Entry address:

0x30DE

Entry point:

F6, C0, FA, 87, EA, F3, 0F, AF, FA, 74, 0A, 0F, BF, EA, BD, 8A, CC, 1B, 78, 03, C6, 00, DB, BD, A4, 4B, A6, 2D, F7, C5, CA, 0C, 6E, 34, 69, FB, A5, 42, 2D, 53, 0F, AF, FD, 88, F6, E8, 2B, 00, 00, 00, BD, 0B, AA, 51, F0, 8D, 1D, BC, 7B, B8, 3A, 8B, D7, 81, FE, B7, E8, 00, 00, 78, 09, 80, CD, BD, 81, DB, 82, E3, 2B, 3A, 2B, C5, 75, 09, 8D, 35, 41, C7, 8F, E1, 4E, 10, CA, FE, C5, 8D, 0D, A9, 21, 7A, FD, 0F, B7, D3, 8B, D6, 88, C6, C6, C6, 28, 3D, 86, C7, 00, 00, 5D, 87, C8, 4B, B6, 86, 8D, 35, B4, F2, 36, 9D... 
[+]

Entropy:

7.9679 (probably packed)

Code size:

23 KB (23,552 bytes)

The file universal-usb-installer-1.9.6.3.exe has been seen being distributed by the following URL.

http://www.pendrivelinux.com/downloads/.../Universal-USB-Installer-1.9.6.3.exe

Remove universal-usb-installer-1.9.6.3.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.