» video_player_upgrade.exe
Overview
Analysis
File Details
Downloads (1)

video_player_upgrade.exe

Nero StartSmart Essentials 2009

Nero StartSmart Essentials

The application video_player_upgrade.exe has been detected as a potentially unwanted program by 34 anti-malware scanners. The file has been seen being downloaded from chaosium.com.

File name:

Publisher:

Nero StartSmart Essentials

Product:

Nero StartSmart Essentials 2009

Version:

9.0.0.1

MD5:

b0c9a12999234a2bfff72cdd4b1e1d64

SHA-1:

eb83f8327d2e26e20828848b5efaed5d867c5d9f

SHA-256:

f988569d9f5932fc8c15b998400e82d3c571324d633aacb617b436fa48e2d952

Scanner detections:

34 / 68

Status:

Potentially unwanted

Analysis date:

4/25/2024 11:53:32 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Adware.Symmi.38378

251

AegisLab AV Signature

Troj.W32.Yakes.dyow!c

2.1.4+

AhnLab V3 Security

Trojan/Win32.Redyms

2016.03.30

Avira AntiVirus

TR/TorSolar.A.9

8.3.3.4

Arcabit

Trojan.Adware.Symmi.D95EA

1.0.0.666

avast!

Win32:Androp [Drp]

2014.9-160529

AVG

Win32/Cryptor

2017.0.2729

Baidu Antivirus

Trojan.Win32.Injector

4.0.3.16529

Bitdefender

Gen:Variant.Adware.Symmi.38378

1.0.20.750

Bkav FE

W32.VariantYakesK.Trojan

1.3.0.7744

Comodo Security

Backdoor.Win32.Androm.CXV

24699

Dr.Web

Trojan.DownLoader9.14019

9.0.1.0150

Emsisoft Anti-Malware

Gen:Variant.Adware.Symmi.38378

8.16.05.29.02

ESET NOD32

Win32/Injector.AXWF (variant)

10.13253

Fortinet FortiGate

W32/Injector.AVRA!tr

5/29/2016

G Data

Gen:Variant.Adware.Symmi.38378

16.5.25

IKARUS anti.virus

Trojan.Win32.Yakes

t3scan.2.0.9.0

K7 AntiVirus

Trojan

13.220.19157

Kaspersky

HEUR:Trojan.Win32.Generic

14.0.0.139

Malwarebytes

Trojan.Agent.ED

v2016.05.29.02

McAfee

PWSZbot-FRH!B0C9A1299923

5600.6385

Microsoft Security Essentials

Trojan:Win32/Bulta!rfn

1.1.12603.0

MicroWorld eScan

Gen:Variant.Adware.Symmi.38378

17.0.0.450

NANO AntiVirus

Trojan.Win32.Yakes.cszdcv

1.0.18.7201

Panda Antivirus

Trj/Crilock.C

16.05.29.02

Qihoo 360 Security

Win32/Trojan.Multi.daf

1.0.0.1120

Quick Heal

Trojan.Napolar.r4

5.16.14.00

Rising Antivirus

PE:Malware.Generic/QRS!1.9E2D [F]

23.00.65.16527

Sophos

Troj/Wonton-P

4.98

Trend Micro House Call

TROJ_SPNR.06AR14

7.2.150

Trend Micro

TROJ_SPNR.06AR14

10.465.29

Vba32 AntiVirus

SScope.Worm.Ngrbot.2414

3.12.26.4

VIPRE Antivirus

Worm.Win32.Dorkbot.b

48234

Zillya! Antivirus

Trojan.Yakes.Win32.19951

2.0.0.2748

File size:

224 KB (229,376 bytes)

Product version:

9.0.0.1

Original file name:

nero.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\video_player_upgrade.exe

File PE Metadata

Compilation timestamp:

1/24/2014 5:10:33 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

3072:6uVYoq9AhotkjCiuSjqL3eiozrAZn2scwL68KT2W4RrOZIWaav5CDiR:r2tkeHQoosrq4Rr7Waar

Entry address:

0x14DF

Entry point:

E8, AB, 15, 00, 00, E9, 89, FE, FF, FF, 66, 0F, EF, C0, 51, 53, 8B, C1, 83, E0, 0F, 85, C0, 75, 7F, 8B, C2, 83, E2, 7F, C1, E8, 07, 74, 37, 8D, A4, 24, 00, 00, 00, 00, 66, 0F, 7F, 01, 66, 0F, 7F, 41, 10, 66, 0F, 7F, 41, 20, 66, 0F, 7F, 41, 30, 66, 0F, 7F, 41, 40, 66, 0F, 7F, 41, 50, 66, 0F, 7F, 41, 60, 66, 0F, 7F, 41, 70, 8D, 89, 80, 00, 00, 00, 48, 75, D0, 85, D2, 74, 37, 8B, C2, C1, E8, 04, 74, 0F, EB, 03, 8D, 49, 00, 66, 0F, 7F, 01, 8D, 49, 10, 48, 75, F6, 83, E2, 0F, 74, 1C, 8B, C2, 33, DB, C1, EA, 02... 
[+]

Entropy:

7.0830

Code size:

19 KB (19,456 bytes)

The file video_player_upgrade.exe has been seen being distributed by the following URL.

http://chaosium.com/?swoaz4ba2ictw=d3628f974f3f

Remove video_player_upgrade.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.