format factory 3.3.3 free-multifunctional media converter.exe

Format Factory

chen jun hao

The application format factory 3.3.3 free-multifunctional media converter.exe, “Format Factory Video/Audio/Picture Converter” by chen jun hao has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from download022.fshare.vn and multiple other hosts.
Publisher:
Free Time  (signed by chen jun hao)

Product:
Format Factory

Description:
Format Factory Video/Audio/Picture Converter

Version:
3.3.3.0

MD5:
c53c4325e0626c46dcdb1d58c4b0ebe0

SHA-1:
9f5922424c4e6d114f26978cb09d5b4dd1e856cf

SHA-256:
1152634b63be37484a5edbdf9f8e0811f98deacdecd2957b2ecb8f40bc9271c0

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/24/2024 12:17:23 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.chenjunhao.x
14.7.31.23

File size:
52.1 MB (54,671,192 bytes)

Product version:
3.3.3.0

Copyright:
Format Factory

Trademarks:
Format Factory Application is a trademark of FreeTime

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Digital Signature
Signed by:

Authority:
GlobalSign nv-sa

Valid from:
6/25/2013 1:09:13 PM

Valid to:
6/25/2016 1:09:13 PM

Subject:
CN=chen jun hao, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11215F9DDE67138EA8C52C9F6F1901954DE8

File PE Metadata
Compilation timestamp:
12/6/2009 2:50:46 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
786432:bu5CQb4W6x77gcDUhCGpWPwAtvupShbiAqM83A/NMZjxOL9JcPwBARpRAWqTu:KkBloAGpWPPu8QO83oqZQTIwmjGi

Entry address:
0x323C

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 58, 3F, 42, 00, E8, 09, 2C, 00, 00, A3, A4, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 58, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, A0, 36, 42, 00, E8, BC, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, AA, 28, 00, 00...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
23 KB (23,552 bytes)

The file format factory 3.3.3 free-multifunctional media converter.exe has been seen being distributed by the following 50 URLs.

http://download022.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.3.0.exe

http://download022.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.3.0.exe

http://download022.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.3.0.exe

http://download022.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.3.0.exe

http://global-shared-files-l3.softonic.com/9f5/922/.../file?nvb=20140517071000&nva=20140517191100&token=093175f8f823adba1a3a3&id_file=72054&channel=WEB&instance=softonic_en&type=PROGRAM&fdh=yes&SD_used=0&filename=FFSetup3-3-3-0.exe

http://download022.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.3.0.exe

http://dl1.filesoul.com/.../Format-Factory-3-3-3.exe

http://global-shared-files-l3.softonic.com/9f5/922/.../file?nvb=20140422183639&nva=20140423063739&token=0a7d3f77a267f58f73827&id_file=72054&channel=WEB&instance=softonic_en&type=PROGRAM&fdh=yes&SD_used=0&filename=FFSetup3-3-3-0.exe

http://download022.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.3.0.exe

http://global-shared-files-l3.softonic.com/9f5/922/.../file?nvb=20140602145650&nva=20140603025750&token=04a8f883d8e9c46037c9c&id_file=72054&channel=WEB&instance=softonic_en&type=PROGRAM&fdh=yes&SD_used=0&filename=FFSetup3-3-3-0.exe

http://global-shared-files-l3.softonic.com/9f5/922/.../file?nvb=20140528073015&nva=20140528193115&token=03713852bde0fd80f6d74&id_file=72054&channel=WEB&instance=softonic_en&type=PROGRAM&fdh=yes&SD_used=0&filename=FFSetup3-3-3-0.exe

http://download022.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.3.0.exe

http://download022.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.3.0.exe

http://file.dl1.svit.vn/download/403e0bb6/260e1bd750b7491a31604a8a0ffa38e3/2014/.../SinhVienIT.Net--FFSetup3.3.3.0.exe

http://global-shared-files-l3.softonic.com/9f5/922/.../file?nvb=20140426095458&nva=20140426215558&token=0485fe7a0926204273c52&id_file=72054&channel=WEB&instance=softonic_en&type=PROGRAM&fdh=yes&SD_used=0&filename=FFSetup3-3-3-0.exe

http://download022.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.3.0.exe

http://global-shared-files-l3.softonic.com/9f5/922/.../file?nvb=20140527065230&nva=20140527185330&token=0b2f92971e947d979e91b&id_file=72054&channel=WEB&instance=softonic_en&type=PROGRAM&fdh=yes&SD_used=0&filename=FFSetup3-3-3-0.exe

http://forum.enativ.com/filebase.php?d=1&id=293&f=293&what=s&searchword=format&page=1

http://global-shared-files-l3.softonic.com/9f5/922/.../file?nvb=20140327200435&nva=20140328080535&token=0f6c92a20ad69b5983b6f&id_file=72054&channel=WEB&instance=softonic_en&type=PROGRAM&fdh=yes&SD_used=0&filename=FFSetup3-3-3-0.exe

http://download022.fshare.vn/dl/.../[LinksVIP.Net] SinhvienIT.Net-FFSetup3.3.3.0.exe

http://download022.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.3.0.exe

http://www.tkgsh.tn.edu.tw/wpy/.../FFSetup3.3.3.0 (1).exe

http://www.pcfreetime.com/.../FFSetup3.9.5.0.exe

http://global-shared-files-l3.softonic.com/9f5/922/.../file?nvb=20140607113403&nva=20140607233503&token=0f57dfe337a4daedbd762&id_file=72054&channel=WEB&instance=softonic_en&type=PROGRAM&fdh=yes&SD_used=0&filename=FFSetup3-3-3-0.exe

http://download022.fshare.vn/dl/.../SinhvienIT.Net-FFSetup3.3.3.0.exe

http://global-shared-files-l3.softonic.com/9f5/922/.../file?nvb=20140608224814&nva=20140609104914&token=0479cdead62f393255051&id_file=72054&channel=WEB&instance=softonic_en&type=PROGRAM&fdh=yes&SD_used=0&filename=FFSetup3-3-3-0.exe

https://dw.uptodown.com/dwn/rvxUsskssNSYKdLd0VHeGa3MLw-4ejQRzFRHtgVeraAxHMlDyFshrF5liOPN--tGVIITeIFp0upJ8DXeRbKZMvzMS_eN-BL4YyPyFQyvCFe6CZoi4lMUIZxd9iluB_1b/bZP2pPsp4xSbx_czchrrZEDeQtZRdeZEVMwB0FZcDDZ-o-e5W6naQsfhZo4wfHxwGMpY_Aosq686U7WDiIEmo9MuUQq3lh-jSXJfjWam4VD2OPISLJ3VUsEoGAfih5gg/.../

http://global-shared-files-l3.softonic.com/9f5/922/.../file?nvb=20140607090018&nva=20140607210118&token=00a187d88f779bb6012cb&id_file=72054&channel=WEB&instance=softonic_en&type=PROGRAM&fdh=yes&SD_used=0&filename=FFSetup3-3-3-0.exe

http://www.filehippo.com/download/file/.../

Latest 30 of 60 download URLs