home

HDPlayer.exe

HDPlayer

Sivi Technology Limited

The application HDPlayer.exe by Sivi Technology Limited has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Sivi Technology Limited  (signed and verified)

Product:
HDPlayer

Version:
1.0.0.0

MD5:
025ec13c4b99e65856296bde3eddf807

SHA-1:
bbec52dec9c6d789b4e0f6acc48c97467125040c

SHA-256:
540dfb7a2156705fe5c3fa8eb6c8f67a2bcc5c184292c4ae5cf92d829f8686d8

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/26/2024 6:29:12 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Elex (M)
17.2.10.9

File size:
15 KB (15,408 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2016

Original file name:
HDPlayer.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\apps\2.0\46jdxb3k.v14\2al5weyy.1h6\hdpl..tion_0ed87563228038ce_0001.0000_3aa8a6ce5fae3b44\hdplayer.exe

Digital Signature
Signed by:
Sivi Technology Limited

Authority:
GlobalSign nv-sa

Valid from:
5/6/2016 12:04:31 PM

Valid to:
3/1/2017 1:26:03 PM

Subject:
CN=Sivi Technology Limited, O=Sivi Technology Limited, L=Hong Kong, S=Hong Kong, C=HK

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121425C73F5B28AE6BF0FAAF2BE407751CF

File PE Metadata
Compilation timestamp:
2/9/2017 3:47:32 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
48.0

.NET CLR dependent:
Yes

Entry address:
0x303A

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.1947

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
4.5 KB (4,608 bytes)

Remove HDPlayer.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.