flvplayer4free_setup.exe

FLVPlayer4Free Free FLV Player

Sakysoft s.r.l.

The application flvplayer4free_setup.exe, “FLVPlayer4Free Free FLV Player Setup ” by Sakysoft s.r.l has been detected as a potentially unwanted program by 2 anti-malware scanners. The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
Publisher:
Sakysoft s.r.l. uninominale   (signed by Sakysoft s.r.l.)

Product:
FLVPlayer4Free Free FLV Player

Description:
FLVPlayer4Free Free FLV Player Setup

Version:
4.6.0.0

MD5:
80eb0c9613edd3059cfea5b6f382b757

SHA-1:
a7f7dca4d630bccaf48e80e6fb01888109ccebd5

SHA-256:
39e0662465b2dfde7021cb3c47230d17ee588679e8345f733c872831cacbef57

Scanner detections:
2 / 68

Status:
Potentially unwanted

Analysis date:
11/27/2024 3:28:42 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/DownWare
8.9814

Reason Heuristics
PUP.Optional.Installer.U
14.5.20.6

File size:
5.5 MB (5,753,248 bytes)

Product version:
4.6.0.0

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\flvplayer4free_setup.exe

Digital Signature
Signed by:

Authority:
The USERTRUST Network

Valid from:
2/2/2011 1:00:00 AM

Valid to:
2/3/2012 12:59:59 AM

Subject:
CN=Sakysoft s.r.l., O=Sakysoft s.r.l., STREET=Via Gorghi 6, L=Udine, S=UD, PostalCode=33100, C=IT

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
009C31E2D462BADDE1D363B1F6004DB4CC

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:Qmhv5MORQl3BXUbabLtQo/79zCHH4gBpjAZJWS/3mgEdQYU:lhGO0B0aXtQENIpXAZn/3VVYU

Entry address:
0x9C40

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, E8, CD, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E8, CD...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
37 KB (37,888 bytes)

The file flvplayer4free_setup.exe has been seen being distributed by the following 16 URLs.

http://gsf-cf.softonic.com/a7f/7dc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63240&instance=softonic_fr&type=PROGRAM&Expires=1480223207&Signature=UquhO4Ki5QkPIEKJkjRou4pDPQUFPhueVFpM1xeOQo9vf1zsGODa2wNTWp8V8tiOhJsXIhBSFTjKG5-kBaGwg9sey-sGLrPcE~8diYR6EIrYI9NiHXPYnUpcNTYyDrbg-iV5ULEYMaP31nH9x2fDtdUnoqVwUrKBT6demtL-5SM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flvplayer4free_setup.exe

http://flvplayer4free-free-flv-player.fr.softonic.com/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAOC7j4Mi9P8K6M9rHW2J8C3zR BxTZ883rUfv12wE9Fjr4lzDATzoUgSkKCfHGEuDuSZEp6la2iuz7uEAxu24Sf52MO7tKNHnIzAfLBaPz2KrQrZJgDOPvulGeECen40QOT9YAMdJcipxrmSuKtnJeNtL81fKVJS79YQPdw44kxBQCD6lxbVgnRKQqd5ngqgq9LRtyRiNGKAwVt9YKEj38Xt0U13wfoz5nYBznbRF6j61I2lvpZkjmJ0a9kQzOUp/TH8nUHYJ/GLEsMHvuBlXZQ3irkR sbhGdMY/POpyz7K0c5YDwUhFeX/.../brCq1il6s6zR4X72zQRau9ga5fG8RGUU5M7nvTYOzY85h6mM6MpYE4WVia29Mzlmuhy3z7c2L7F6csCuFRYNh7PrY4C0FHSoLyoSGWNoipdI1jC0Ex3fGLS40e5CzImtF0dNQY3oD8lspwAQJIubrF3izdIfY=

http://gsf-cf.softonic.com/a7f/7dc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63240&instance=softonic_fr&type=PROGRAM&Expires=1476771615&Signature=EdwyqebQseNP1fLaryv1BuJOrY2Di1vPpHpJSyirqVLwv8T7CYF3QiSfLSR5dxKSO1CI7EfENPU0MCfBCrp9cpP-DVEkyS2iXcPZdhZJtAjNw8vr5fhlLjt4Z-MvtNKNXfUOh1JctR02pK8vrhmx61QD-FB~NLBnVgxF~bcO3o4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flvplayer4free_setup.exe

http://gsf-cf.softonic.com/a7f/7dc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63240&instance=softonic_en&type=PROGRAM&Expires=1478319634&Signature=V0LWCoSj1Pv1UtBL7En88i3-6rHBWErDKDte-OH3uNgmrIF36vjBZ4LIiWfuz42Q1GavzSZoozygYYCwGeoW3FixDZ1Yv7l-rqtoG9PMDPM1quGb1gNsFWuUNX6Dpxagx9l~TXhaDMgfmw5xjM3OclLFUpcDEL3Qp3bGv5rmTq4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flvplayer4free_setup.exe

http://gsf-cf.softonic.com/a7f/7dc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63240&instance=softonic_fr&type=PROGRAM&Expires=1479253231&Signature=JpAnj-vB21oHIHy8UdFyHM0XOqNy4ktj0t8eyNDYfNmZ3QiEg9Oc6f3pphfrCDZHdHCE9-RfTI6y5vEOmjrmV9QsJW9LxKMRANTZMtMLBBH4mtRK38hnBc8XJclhc74guM2GW3lJQ8yuGELx8ad74nfSPn9~SwbVIbdcfuSbzaw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flvplayer4free_setup.exe

http://gsf-cf.softonic.com/a7f/7dc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63240&instance=softonic_fr&type=PROGRAM&Expires=1477210003&Signature=VHPdJ~AOlBRberygW1tMzN86hYg7GU7Z7wYc2jxDWnmm5U-YRa~8W7rhpMMud1I4KbQsNjdxVWAuSEthIlMfeckV4hXTZrnv-dcGVrLnY6trODH6wwwMVgnQ~JKzWn7OCToktDIIPFIhcRHYR2shIYVZ4G3kgKUUVlgPoNyWmzk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flvplayer4free_setup.exe

http://flvplayer4free.softonic.com.br/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAOC7j4Mi9P8K6M9rHW2J8C3zR BxTZ883rUfv12wE9Fjr4lzDATzoUgSkKCfHGEuDuSZEp6la2iuz7uEAxu24Sf52MO7tKNHnIzAfLBaPz2KrQrZJgDOPvulGeECen40QOT9YAMdJcipxrmSuKtnJeNtL81fKVJS79YQPdw44kxBQCD6lxbVgnRKQqd5ngqgq9LRtyRiNGKAwVt9YKEj38XDLzlG/FCyzfqJLRk L6W47Ae110YqknqQyIIKE3QbQfLgycBjt39YttoonQL rAMidRu5J7a6r6YCrirKYzfieTwYsXTNiiWxMTxJJUtoQE09XHLOCcg3gjR0DX1kP3wQDftIBZV612rC1RDZdkbm2WuEhIJCyKVIVMYZNal7WglqTLIIkF7trKR4u9EDS4Dbr/A0Puej2VaY CkaYb lrgQwUs5gvT8fPhGlF5dCeGapJXgM9/BZa1ZZTbUJtQQQD/.../1 GR0tybRnT886Cw215tO7hw9d6xlxGUU5M7nvTYOzY85h6mM6MpYE4WVia29Mzlmuhy3z7c2L7F6csCuFRYNh7PrY4C0FHSoLyoSGWNoipdI1jC0Ex3fGLS40e5CzImtF0dNQY3oD8lspwAQJIubrF3izdIfY=

http://gsf-cf.softonic.com/a7f/7dc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=63240&instance=softonic_br&type=PROGRAM&Expires=1448603051&Signature=GYSO41aFWW9n8D0GQyVaI8Z0ZbTvo-J9SjLhnCayzicf3qr~V990VQsySDo9sw~JjFjawGel~XKBPBlLjrg1ASotoi-k8ivSSPf0mVF4aao-u8fNz0fgEg8RdNdVWaol6CkOjkRumr6tdzp~iurDhBcEomheWvkUynTEeaL5z~Y_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=flvplayer4free_setup.exe

Remove flvplayer4free_setup.exe - Powered by Reason Core Security