home

ffsetup3.3.2.0.exe

Format Factory

chen jun hao

The application ffsetup3.3.2.0.exe, “Format Factory Video/Audio/Picture Converter” by chen jun hao has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup program which is used to install the application. The file has been seen being downloaded from download001.fshare.vn and multiple other hosts.
Publisher:
Free Time  (signed by chen jun hao)

Product:
Format Factory

Description:
Format Factory Video/Audio/Picture Converter

Version:
3.3.2.0

MD5:
59e90e94ad33baa9889bcb7a6b8ad7da

SHA-1:
732e11f53021d41e4def9578388d8ce1a879f06d

SHA-256:
1c8a8a038db1551a5fcd333f13a2d184a7c8542aed3a022884dfa8b706d48d47

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
1/13/2025 4:16:02 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Installer.chenjunhao.L
14.7.31.23

File size:
55.4 MB (58,128,208 bytes)

Product version:
3.3.2.0

Copyright:
Format Factory

Trademarks:
Format Factory Application is a trademark of FreeTime

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\ffsetup3.3.2.0.exe

Digital Signature
Signed by:
chen jun hao

Authority:
GlobalSign nv-sa

Valid from:
6/25/2013 11:09:13 AM

Valid to:
6/25/2016 11:09:13 AM

Subject:
CN=chen jun hao, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11215F9DDE67138EA8C52C9F6F1901954DE8

File PE Metadata
Compilation timestamp:
12/5/2009 11:50:46 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
1572864:Ql7TzLPbk4hLPhHthKUlKWO5QtnxqH5DXnjcn02bfBdf/9:Ql7LA4lsqKb5LHB49dd

Entry address:
0x323C

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 58, 3F, 42, 00, E8, 09, 2C, 00, 00, A3, A4, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 58, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, A0, 36, 42, 00, E8, BC, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, AA, 28, 00, 00...
 
[+]

Code size:
23 KB (23,552 bytes)

The file ffsetup3.3.2.0.exe has been seen being distributed by the following 34 URLs.

http://download001.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.1.0.exe

http://download001.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.1.0.exe

http://download001.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.1.0.exe

http://download001.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.1.0.exe

http://download001.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.1.0.exe

http://file.dl1.svit.vn/download/3e1c0b94/b81296d0682436c1e035fb860b5d255f/2014/.../SinhVienIT.Net--FFSetup3.3.1.0.exe

http://qpdownload.com/data/format-factory/.../FFSetup3.3.1.0.exe

http://www.megadlcenter.com/vjMSuLycLvWgJfHdaZGXeGfEdBUlGVG DD4g63VNiH3Dkqo2twlvTpu9VBwfNdiaFc1ChigAA3i16Pw6X_5qN_Pvi4rrg YoepFG5kBsiCfn4I_m KL55zSPa78ixxpoaBfgOmJvPC5E_72rc0dwNK99Nu_9VPteH3qT3RKBCCpOvSMl6w1nW1N4SFnbosgpHBJNGV26q6yE5l0Ms7BygRU5aqexkDDTpdTRcX2j8wa_3nxR_ZrnuegixlCloZ XRU2g9eWZVYVubvb9PSe9b4xWc3gj8y02IxxnS2ah31u2yAA6R_ 5Fe9Qums 0MC_4fk1F1RpOcfHwcEAZwJTiez50nJlAZDglyJmFgBH1j91nKuxB8wOd_ s4xcu tejIl41NzWPz W0cP dVn57t5r0W9jG5jLU3IH 3zLuZmm2I7MaJyd5ceJUJvS6SZO8k6UYSWNdiBNFRmiMlx8_1afH9C0xuda9CEeYyv 2_6b0T6pOaXP52WGkcxXNT7_uDVIyTVLkYiFM4f4DPFcc_T3zGY64w==-G0UAAETnFhM_jtAJxZAM7 hwU3DIgcMXxYWBQrAxdq7QqCdpjbsLRRr0FtOG2Wq72stnlT4dZk71rUBgwKEn-e

http://api2.tenlua.vn/filemanager/builddownload/.../?hash=0e7fb22ea14b385a486b6a3d73ff2c8b2c33ac83b544ea57ff3cc87a98411715622079f8e76d2fb11522f9f50d2e0c53443212dfbaf54e65765cc34ef480db9fc69bf487c94892f9fe2c3500f9108261c70e8b22af591d698e1a30ca1f7f3cffff30bc211f085c9f90ffed795a2cc1768c4289164112303c0d3c3bc187f1f577b89e44667032be9b722e85788cc633fa&url=0b3da36fa30172185e33336174fd75853636b390ad53eb4dee2a8862c5410f&down=0b3da36fa30172185e33336174fd75853636b390ad53fc56f8369064ca4249102d25

http://file.dl1.svit.vn/download/3e1c0b94/497360efcfef177fc692f3b662b06b5a/2014/.../SinhVienIT.Net--FFSetup3.3.1.0.exe

http://download001.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.1.0.exe

http://www.megadlcenter.com/wH7PzFzg7zWS5vG4NUdGp9sSPWRW4jUx_YEhPsdQWqImDLvE4RwuT33GC4heioiFkPQ2ySJKlcLQqLFalfLeTRZDsjrEHf9ftVZyyZCxfTjFbs1BRXcm4qWmCNyCna2ctHTSAzLeNyZMlLnkdoyQEY nffpioisWee0O yidCsWHVpMLx7k01kZ6d0kjxLDzOJu4F8pw3tCfcvvnKKX3HB51KHZGng==-G0UAAETnFhM_jtAJxZAM7 hwU3DIgcMXxYWBQrAxdq7QqCdpjbsLRRr0FtOG2Wq72stnlT4dZk71rUBgwKEn

http://download001.fshare.vn/dl/.../[LinksVIP.Net] SinhvienIT.Net-FFSetup3.3.1.0.exe

http://download001.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.1.0.exe

http://www.megadlcenter.com/Dmr3vHrKuoxT8Y9kpUAWUYSewXbow3uGw29IkVYppd6jEkNzfRQFfBkHrcJfcjJgpyUGA_NmrWbkqc8heQwqIJDi3sMhPCnxLY_SNv2R0tD7AMOogiGiptflNU5ls_sZ_k_uMWz_N5R3eSABbB_7aHT58fhDUXsIGAn6RfxqD_4EfRKR HGBBYQFh7TV5 RMKimqZttz-G0UAAETnFhM_jtAJxZAM7 hwU3DIgcMXxYWBQrAxdq7QqCdpjbsLRRr0FtOG2Wq72stnlT4dZk71rUBgwKEn

http://www.megadlcenter.com/RhaITqLoZn8K8xqN4w0V2pdYhQFNrQOni_Q2YqVAydFviSLAkELRD4D xMVscwhkssS6TI5UwCTOF7ZAHNBADtSOqdK7Rmu_555hbUrWnzHdQuHqB33bUU08RmZkxJSda5lRK869AuvQwGhFlD8jQVAJqCH36FQoQstxs0qFDE9JQZLViDeWjUSy 2ZkP0TdKKdaISybchrXnsSg4iozzb_b8BxRrmqvQTJIZotkRLkVhX5_bFf82mM5eWDN_t_JNst01e1ObmJQA9FdY2o2OQBujG_JsyvvJwu2aHQjSmnnIziN7uHkyMzWaDEM36lVqmMUCL84fbXQLJfTb6U gkFIyVNsYfAyJXfVrxAswMY7SvsLh8LQIlyY4Q_vKt3j6cXzXPKFxC MgMitL_jkOL2yevvg4LTLn0ah8RDsFihmXcFxx0aTQc vtWgwe1qSnML21t3q45JgkjGrDLxMUIHQ1EJF5S ITiRxo6q3XqZGPaOHd1A3JjmLLecmqELP6ZR8SpKlyRHMMP8GDlwJUwTnlrXqjg==-G0UAAETnFhM_jtAJxZAM7 hwU3DIgcMXxYWBQrAxdq7QqCdpjbsLRRr0FtOG2Wq72stnlT4dZk71rUBgwKEn-e

http://software-files-a.cnet.com/s/software/13/59/75/.../FFSetup3.3.2.0.exe

http://download001.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.1.0.exe

http://www.megadlcenter.com/cyjprg3Yd7Dz5_J_19r3IlJJvBOqw8 3OnfVVVf3Nd4PNQMsRvtTz0br1PKHjSPj0hI5l6SNFmhLUN _H4hfwIZSfGgeo2YBdssM_wAcRtEQTyrxdVWOE3kU8X1BpG5mJU0qW8DT5cgMmxxw7VYUmM5DYd6SXsuHNCdSISse2Ivi exwlia6jMdp80qkge9XKw 9GJgo85i1eMnyFVRjemmJEOIHwHU_wbGEvzZr2KiUYAtadHTL9VNjsxw4 qJZ8Kn_lgQhwQFcuuCiDAkCVEZIbQlVMaLqZaERgxSUwn4v9ZCrvcMAtj27WGEPL62OK4wIWbnZLxnooMePQguU6z5AjpYloV3jqkz1w_thxW4akXHdzq0eL7NTRsN16mpXHlckMvuFdAFba_nOxtVWP8jFb_z_3BR7PuJ0CH7IuvANnuIWpnO9WE 6NheYTCrF8K__QKde6MamSoVh fXjP8asaT_hXoDeyLEj_7BzYYlqaLethhmOo420wxr5QVwZMpqvVzB6Fu9X1vCTL4XuNcxnAxVh1g==-G0UAAETnFhM_jtAJxZAM7 hwU3DIgcMXxYWBQrAxdq7QqCdpjbsLRRr0FtOG2Wq72stnlT4dZk71rUBgwKEn-e

http://www.megadlcenter.com/c?x=fN3PVdI D1f2oiUqBVOh//P1EMC/wACRaYS6/X1M1h8=&c=QQbioGULF34JragVxDeAqphlz/f8wsclGAds2b3dmUWh0NViPQW GZClpC8jrlUX1G8QT4Uo1YTwvtVJ4ASr32ytPOFeib0qzvPNOcKIFNfTEpto/QVs/8HFwgcYySiaIK5zNHuHl IUueM48Z31Tcx3oEOTfKEAQecj4uPYqW4=&e=0&downloadAs=FFSetup3.3.1.0.exe&fallback_url=http://qpdownload.com/data/format-factory/.../FFSetup3.3.1.0.exe

http://download001.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.1.0.exe

http://download001.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.1.0.exe

http://www.megadlcenter.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

http://www.megadlcenter.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

http://www.megadlcenter.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

http://www.megadlcenter.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

http://download2093.mediafire.com/9wce13fpcmhg/.../FFSetup3.3.2.0.exe

http://format-factory.th.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-enaKLoKCol5c=

http://download001.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.1.0.exe

http://dl.cdn.chip.de/downloads/.../FFSetup3.3.2.0.exe

Latest 30 of 34 download URLs

Remove ffsetup3.3.2.0.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.