kgv1tgxw.exe

Free YouTube Downloader

Bonjoy (Verified Application Company)

The executable kgv1tgxw.exe, “Free YouTube Downloader Setup Program” has been detected as malware by 1 anti-virus scanner. This is a setup and installation application and has been known to bundle potentially unwanted software.
Publisher:
How, Inc  (signed by Bonjoy (Verified Application Company))

Product:
Free YouTube Downloader

Description:
Free YouTube Downloader Setup Program

Version:
4.0

MD5:
35036f466ba63149f9384a46cf0c6f6e

SHA-1:
213901f0cd583fbb4c715ce94545269b20829b0a

SHA-256:
574af112b4c590cdcf76b49ae8942fb308287f69b671b41337305af7a85168ce

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/27/2024 12:55:21 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.3.2.13

File size:
1.2 MB (1,233,960 bytes)

Product version:
4.0

Copyright:
How Inc.

Original file name:
Free YouTube DownloaderSetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\kgv1tgxw.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
12/12/2015 8:00:00 AM

Valid to:
12/12/2016 7:59:59 AM

Subject:
CN=Bonjoy (Verified Application Company), O=Bonjoy (Verified Application Company), STREET="510 Market St #301", L=San Diego, S=CA, PostalCode=92101, C=US

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
0CBA100EB8A303781BAFC3DFA145B230

File PE Metadata
Compilation timestamp:
1/30/2016 1:29:29 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

Entry address:
0x4F6D2

Entry point:
E8, DD, 04, 00, 00, E9, 80, FE, FF, FF, 55, 8B, EC, 83, 25, 2C, AE, 4A, 00, 00, 83, EC, 2C, 53, 33, DB, 43, 09, 1D, D0, 82, 4A, 00, 6A, 0A, E8, D2, 84, 02, 00, 85, C0, 0F, 84, 74, 01, 00, 00, 83, 65, EC, 00, 33, C0, 83, 0D, D0, 82, 4A, 00, 02, 33, C9, 56, 57, 89, 1D, 2C, AE, 4A, 00, 8D, 7D, D4, 53, 0F, A2, 8B, F3, 5B, 89, 07, 89, 77, 04, 89, 4F, 08, 89, 57, 0C, 8B, 45, D4, 8B, 4D, E0, 89, 45, F4, 81, F1, 69, 6E, 65, 49, 8B, 45, DC, 35, 6E, 74, 65, 6C, 0B, C8, 8B, 45, D8, 35, 47, 65, 6E, 75, 0B, C8, F7, D9...
 
[+]

Entropy:
7.2883

Code size:
527 KB (539,648 bytes)

Remove kgv1tgxw.exe - Powered by Reason Core Security