home

video_converter_setup.exe

Egor Chernyshev

The application video_converter_setup.exe by Egor Chernyshev has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software.
Publisher:
Egor Chernyshev  (signed and verified)

MD5:
4f2397a4982ace9903b43fa541f771c9

SHA-1:
0101e33a21fd2826bb8dcd2ec7ca4b33c44a9880

SHA-256:
f34e30fb9701bcd59cf5587210f9fb8df8c34016a5fc0d3d8410b98b6ce04b70

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
4/25/2024 3:47:44 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
16.10.3.21

File size:
3.6 MB (3,760,040 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\video_converter_setup.exe

Digital Signature
Signed by:
Egor Chernyshev

Authority:
VeriSign, Inc.

Valid from:
9/25/2013 7:00:00 AM

Valid to:
12/26/2015 6:59:59 AM

Subject:
CN=Egor Chernyshev, OU=Individual Developer, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=No Organization Affiliation, L=Verhny Tagil, S=Sverdlovskaya obl., C=RU

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7CB35D943B644DB19DD9065F2D08C8CB

File PE Metadata
Compilation timestamp:
6/20/1992 5:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:1ErK9kn4MPR/TSpRqU6iepztFedEwrO2uqP+gDyxEJlAG0ej3QguNBi1cBB17Vyk:/GHNsoisxF8EG9JPNyCnAVaQ5Nce7Wk

Entry address:
0x9C40

Entry point:
1A, 57, EA, 16, 4B, 24, 41, BB, F7, 59, 7C, 46, 3C, F0, 11, C6, 89, B1, 37, 5F, 34, 8A, 43, 34, EC, 05, BB, 08, EC, FA, F2, 00, CE, 2E, 8A, 0D, 27, 77, 66, 1B, 8E, 3E, BF, 8B, 3B, C4, AB, 78, 7D, 5E, 8C, 4B, AB, 25, 29, D7, 6D, 70, B3, A6, B0, A8, 84, 36, E9, 0B, 5A, 91, 1A, 40, EA, 93, 78, DE, A1, C9, C0, 63, 6C, 38, 26, 70, 3D, 65, 29, AF, AD, BA, D0, B8, 3E, 16, CF, DB, 02, 18, B6, 3C, D6, 05, 39, C9, 29, 76, 23, EF, 80, 32, A4, 8E, 9C, 86, 4F, 8F, AD, 82, 89, 3E, 66, 79, A9, E1, 43, 26, 24, 63, 20, 35...
 
[+]

Entropy:
7.9993  (probably packed)

Code size:
37 KB (37,888 bytes)

Remove video_converter_setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.