» freevideoeditor.exe
Overview
Analysis
File Details
Downloads (17)

freevideoeditor.exe

Daho

Digital Wave Ltd

The application freevideoeditor.exe, “Daho Setup ” by Digital Wave has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from www.heartvaultdl.com and multiple other hosts.

File name:

freevideoeditor.exe

Publisher:

Nakonimo (signed by Digital Wave Ltd)

Product:

Daho

Description:

Daho Setup

MD5:

0dfda9332aa695c60e60799e009d4015

SHA-1:

24a88be13eae2611d5b505b97147b24e9e8b132b

SHA-256:

adfa04958150764f31ad135d07bbc8d04e5d13f9689574edb92a8755cf3ffadf

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

11/15/2024 11:18:02 PM UTC (a few moments ago)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.DigitalWave.Bundler.Installer.Meta (L)

16.4.6.16

File size:

1013.2 KB (1,037,560 bytes)

Product version:

5.7

File type:

Executable application (Win32 EXE)

Installer:

Inno Setup

Common path:

C:\users\{user}\downloads\freevideoeditor.exe

Digital Signature

Signed by:

Digital Wave Ltd

Authority:

Symantec Corporation

Valid from:

12/23/2014 8:00:00 AM

Valid to:

12/23/2017 7:59:59 AM

Subject:

CN=Digital Wave Ltd, O=Digital Wave Ltd, L=London, S=London, C=GB

Issuer:

CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

1825ED6422D189492317AAD87B5382C5

File PE Metadata

Compilation timestamp:

6/20/1992 6:22:17 AM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:VquCERgQOyip4iD3w2pnTbdKxoI3g2pRsCrM1QJd:V7eyip3DtpnTRKGX2sgKE

Entry address:

0xA5F8

Entry point:

55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, CE, 8A, FF, FF, E8, D5, 9C, FF, FF, E8, 64, 9F, FF, FF, E8, 07, A0, FF, FF, E8, A6, BF, FF, FF, E8, 11, E9, FF, FF, E8, 78, EA, FF, FF, 33, C0, 55, 68, C9, AC, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 92, AC, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, B2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, C4, 97, FF, FF, 8D, 55, F0, 33, C0, E8, B6, C5, FF, FF, 8B, 55... 
[+]

Entropy:

7.9081

Packer / compiler:

Inno Setup v5.x - Installer Maker

Code size:

39.5 KB (40,448 bytes)

The file freevideoeditor.exe has been seen being distributed by the following 17 URLs.

http://www.heartvaultdl.com/c?x=5CXiTLi3wWwPjW1UMTVgxLp0PCOeeU40WsZm5aPTGCw=&c=xm4BkbddoN5fCz0qsBJgrnZ4ycmclURxbDWhbEBj6v AiUugQL3EDxpnp6sgrROv6zjT8G0K4nYQ9E4GcIxu/CuAN NqZUqMQUiQGbntE oesIxdRwfCl hStI6ZzHv9&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.heartvaultdl.com/c?x=Rru9gUSXDNhoU4WyT/IFs4e9Zum5XdOOV6O 0xR9n/A=&c=bXzGk3eHk4ob4OkSFVqPRS0lr3qpC3pXag5HiOhY ZhBb3YogzDV6e9UGzXQm9DubPuseVj9jhksLYUVzWsukkoMSWjf5 ui2B7ol/lIf4gASn3mclRxvTqQIL2CMqHu&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.heartvaultdl.com/c?x=npQ nx8wnG5Ivm brZ/ji6iey6unLK7SlSe2iumSH4Q=&c=kMnL2V9KFEFk sho0ACGuTj0thFWCVW4MliHNWox4 IjdorKJPGdCTwwBRpLHst/NCFTPsk6/ wEHHpkGjWaawy5ZbL2R1K/csUqQfjVrSvftylB0aKL6uLCvgeSu9DM&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.vaultsfactorycentral.com/c?x=9JhjrBMMa22UJquAIoQUO/y6mLboHrXRiyjWTyaNtB0=&c=5k QcNZsdrz3zSaAoC1qCPP12wPxeQmD51HGlJZa Dt1Dg/ATx2oLMrJsqPEU8KladcYCTl5Zl6AipEWBWGYH8b05q4Gaj 0p31mky1Lh6F ruSQKDle9j/rByeHF dq&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.vaultsfactorycentral.com/c?x=YLun4eoGXnftDYWoVczGGTyF43JSbIXJoocupqBpyHw=&c=C3Nb042bdeOidtmAlWOk0e0ubUSpRqIQez62UZIxfQLGA4gPBI7Zry1W1Bz/RnOWL2niZtWKo5kMXTNxMP/3BILVSorZfBi/ 1y750Nq2HDQZ9/OmNMAiwQEXcmrLpPD&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.heartvaultdl.com/c?x=0q5lSVqmhBhEOAnEpfFWBDsUHsi wX9BCLvpG0IlHDM=&c=cUgy4ak4HJwC8fvwdIRLuCNA1UvrpR65ukC3KwFGITYTtDMG9UrrshZYmNu7PkMsLSLneifLP6PzoTsbcYo1v9540KN3ql/877A7lrnAQCA6KV/ft0Z7qk87HBLyuguw&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.vaultsfactorycentral.com/c?x=ESMXR071GnEMiH 4P2JSpyUxYxURIM7Ep6jCVAy70ss=&c=SYynOZ5bKlZTAs4V4VN3bherWbmXCSAAcbs4fmdmuknYLXym1jB8IR6C8Njr1aAqukyMBiq2lKAquLC89Mnxfc5papFi3zy/1LDkp6XBKWj ztJHByr/Bfj4ME7xi438&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.vaultsfactorycentral.com/c?x=r5gJ53lmFzYD9lsk3rpCNWNX9EMSB/8lwv2vGZFO4Z0=&c=E0Le9Qwu/l/DGm7AHuFu1WnIAnFS4VAnUnH7B5QXAsLR8j/qEhPiyC4GpF3yjc8tBShrPK1eR7Rb7T3uOFkfAYMubMWq52EEiwIP7VQF4Z BuQgVmB3qPfFvfWfHsQfx&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.heartvaultdl.com/c?x=YG5Hyz/sSIJthTraEdcExlBM8ANDDOuys1Sn0lamWmo=&c=Q8U54kfbz/bNhp53ksL50 HyA 6Pg5zvn03l4EqpZIN3nNZDzgfL3Qp177tKxPJMpZ1Yi1tl3OS0TXb3daGEfVAot9QxRXevmY2N A 0JOXC8RJwaI0SkwbJ2mqMyiu/&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.heartvaultdl.com/c?x=Oqa20bflamKe8P49HVfqtqELWOZgut ZJFVrgdfOw7I=&c=XDxfCgaTviWo3nHcuu9WQKrzQ9JGyYVenmJphQrXfGOgnV7/jRDXJVPzluZYKSiMrnTRfxdpcoNBJDhcxjNErYToxUnf8LCxJrYC5RCiRsMnz t9Tpj/4C2nOX1Xfc5L&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.heartvaultdl.com/c?x=2DiYCQ/u9GgB8SQSs2kXydCKwQfob SuZe57KoZi r8=&c=WRbXWNoMEXv5R1Nfu/MxvmAF1bbbbqYgRxP9erJ1okYESqyU/gVKIGtF9CS8uCYkz/SQU7n7j6hxm1p1PFeWJOxekmh C1AU4xQucmwQ0oh4CHoLYYtRWiQIrOO6iGOJ&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.vaultsfactorycentral.com/c?x=F02/dDNA7/uGetRwzhKY8dIGo 2qDOeCZfuItBLLFFw=&c=J4nJECjrotBWClLg7D8tWt7XAvbY1nhY18NK5SvLqzYT6BWdFUn4Xgks2CZiSJzK4q7ojoKYRYC3aFXn7m0kTtJGckNZ7NgeotR/xNIWDAv647tIjD7X74o2vbnE2wgA&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.heartvaultdl.com/c?x=NgU5xLI8C8Wc372Mo0oA8dljKmQo3rkiwih94NlCmvg=&c=ngT6hOIndyjeKp6h 4JeSRvxQKpTk8i6Y02XAtv FTBdC6 tfEeSZpEAs3RWdbwNM70e9EThA7g8skNhkmhRIKvcrddYlSO6bb38hLSac44SSZg420GUj9c/NIW m5Dy&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.heartvaultdl.com/c?x=TCaiwfmavIh9llLymJtkDcngiuSBqdkuElXQc0Xs8Vw=&c=LWGFU7O734kMsbWgqudW3PpUemYvxhZ7K9RVyNjlQLW969ua8m3u/fUpyGYxvCNu1utbDFLzIf913zyfRRHW9p6iGYLxfKi2FZt0daZSCT96dC3jA2ibI7AwDb8lu/My&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.heartvaultdl.com/c?x=BFeFPwOr8Pqs5pbyYTCLlgc6Sm1LFFIsaZVtuKUcNKI=&c=3iHLVa7kEfOJVV9oO8jvIv4NktWDXxF8b4OTtohbYj0lkKykF1tZ/5 Hr0x44VMa3BNutqruReCcLv0I7y8Jontl dynPL5NYCExLoyh/nZh5yVuc qJOxDYrGGclKFJ&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.heartvaultdl.com/c?x=X4zSbaagFwQcRfmrJhYUulKpQtloMavy0dmZ0IEYZ0k=&c=zt3O7Z7Cd5oA9y0lH67hC1bPM aoA4IGAih/vFAgi03fa4xL ULcJ4Fogf61Bd7z5TvMyDQ aF2zcyQM2EgALrba6eDnrPzIDKJsZG6QvwNlAeey5wQAoo7W3aQAT4we&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

http://www.heartvaultdl.com/c?x=YMwQYSUJNr7r5rdVqxWuCYYyQztP77zX37E4BS4dvyg=&c=AjPF0ZCTkW8kCeVR2jsE9NYmnAH4POINOuI6CvZx5pPnbC2OI66zVoJ0peY2btqCoqq3BaZTbp6tSCJVl9N4zhPARkLSh/1H9mTjKyua/eACTILh2RI3Cldv8SRt3Znv&downloadAs=FreeVideoEditor.exe&fallback_url=http://off.dvdvideosoft.net/.../FreeVideoEditor.exe

Remove freevideoeditor.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.