mbsetup_uvd-loader.exe

UmmyVideoDownloader 1.6.0.4

Magicbit, Inc

The application mbsetup_uvd-loader.exe, “Ummy Video Downloader ” by Magicbit, Inc has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup program which is used to install the application. The file has been seen being downloaded from ummydownloader.com and multiple other hosts.
Publisher:
Magicbit, Inc  (signed and verified)

Product:
UmmyVideoDownloader 1.6.0.4

Description:
Ummy Video Downloader

Version:
1.6.0.4

MD5:
c05251057c6f3f5cdedc029a3c2f1a33

SHA-1:
7a820495e37b0e3d8c37be7e72de1b21307da5cd

SHA-256:
907e8596cb26796db7959629907587add3420eb72fe91106fd7589dbee08a24e

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/27/2024 4:59:43 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Magicbit.Downloader.Installer.Meta (M)
16.4.28.8

File size:
13.1 MB (13,684,064 bytes)

Product version:
1.6.0.4

Copyright:
All Rights reserved © 2014-2015

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\mbsetup_uvd-loader.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
4/20/2014 9:00:00 PM

Valid to:
4/20/2017 8:59:59 PM

Subject:
CN="Magicbit, Inc", O="Magicbit, Inc", STREET="901 N. Pitt Street, Suite 325", L=Alexandria, S=VA, PostalCode=22314, C=US

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00B5B2652535A2ACE1ACBFF9D5D7816AD4

File PE Metadata
Compilation timestamp:
7/16/2015 10:24:20 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:Q7An0ANXQaHrY3L456DPnTGvR1xjY98QplJ:Qi00YLmOPkxjY98I

Entry address:
0x113BC

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 34, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 1E, D8, FF, FF, E8, 6D, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 33, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 54, 86...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
63.5 KB (65,024 bytes)

The file mbsetup_uvd-loader.exe has been seen being distributed by the following 50 URLs.

http://ummydownloader.com/.../file.php?id=default&f=&country=ec&ts=1462845634&s=1fef6af728dffe1336e597f239ff08d95d278b77

http://ummydownloader.com/.../file.php?id=default&f=&country=th&ts=1462537728&s=726ee0efa9cc6c98a12b05ae60a713666501ddfc

http://ummydownloader.com/.../file.php?id=default&f=&country=mn&ts=1462715067&s=db821f06caae49a4e834f0310b498a134b838dfd

http://ummydownloader.com/.../file.php?id=default&f=&country=ly&ts=1462567317&s=4dbf21f6d8fad3b8737c806d0a8fae556b273c5e

http://ummydownloader.com/.../file.php?id=default&f=&country=br&ts=1462834353&s=0c2a8956e0ccc857689cf2dcc1f7974bca9e5f57

http://ummydownloader.com/.../file.php?id=default&f=&country=ar&ts=1462882016&s=d21fdc3734c237cb35fe6d4258d02c60b5016a01

http://ummydownloader.com/.../file.php?id=default&f=&country=us&ts=1462858145&s=4fb6974ea69a16feadeab81fb3768fd1dc9605c1

http://ummydownloader.com/.../file.php?id=default&f=&country=th&ts=1462665281&s=8ef3aca8d63cd10ddae6b1ebe6a1304b15b1f78a

http://ummydownloader.com/.../file.php?id=default&f=&country=eg&ts=1462732830&s=33504ba6e7aa1428ff2d777d643214bb6d792b31

http://ummydownloader.com/.../file.php?id=default&f=&country=mx&ts=1462769235&s=6f7e9f232ab8a75b2a8444f53e5db0caffa2a909

http://ummydownloader.com/.../file.php?id=default&f=&country=ec&ts=1462807027&s=c97bc66f130c0bf1043897eda62c2f0cfeead7c1

http://sf-apps.com/ummy/.../get.php?id=default&f=&country=jp

http://ummydownloader.com/.../file.php?id=default&f=&country=eg&ts=1462644654&s=9c3911a4a23b4012aa76cefb3d2004d047b2f185

http://ummydownloader.com/.../file.php?id=default&f=&country=cy&ts=1462550344&s=f73f3a6a07857e8a10b1a7b219a36282ec29774c

http://ummydownloader.com/.../file.php?id=default&f=&country=tn&ts=1462546235&s=78f832d4d404c47c7da0111abdf161fca5267096

http://ummydownloader.com/.../file.php?id=default&f=&country=gb&ts=1462924004&s=1399af0b3925fdc9ca91a6da2e8be1660d31df6d

http://ummydownloader.com/.../file.php?id=default&f=&country=lk&ts=1462852425&s=0ee8612d9291e57f6edb31210588980297b3a0e0

http://ummydownloader.com/.../file.php?id=default&f=&country=sa&ts=1462949929&s=18d31a5b11f3eac5b35a7fa9caa8d856197f6993

http://ummydownloader.com/.../file.php?id=default&f=&country=ht&ts=1462782255&s=8d50b78187f2411269dff0828f0709e5deacf2eb

http://ummydownloader.com/.../file.php?id=default&f=&country=bo&ts=1462647316&s=ee1ef059969e072c7a69d31e922d03bfe1ca5fbb

http://ummydownloader.com/.../file.php?id=default&f=&country=tn&ts=1462616622&s=421d2dd36874933ad1544f1ccef5b387d7aad041

http://ummydownloader.com/.../file.php?id=default&f=&country=ng&ts=1462951577&s=6960aadc9dae263eba1380f9dcfb5737cad0b9d4

http://ummydownloader.com/.../file.php?id=default&f=&country=br&ts=1462713376&s=ceeaa001984a0c8eafb96ff9d076e2eb7ffa45b9

http://ummydownloader.com/.../file.php?id=default&f=&country=gh&ts=1462691180&s=ef38c895796d481b1f4c144a670cc1acb68a5253

http://ummydownloader.com/.../file.php?id=default&f=&country=jo&ts=1462910987&s=523c506c64cc793aeb7ef121a716e6ec7b874255

http://ummydownloader.com/.../file.php?id=default&f=&country=eg&ts=1462830906&s=7b0afc367e6932812cde3ccf9af57d3d13297b4d

http://ummydownloader.com/.../file.php?id=default&f=&country=mx&ts=1462557538&s=bc0c5b22d2a715dbbb757fa53e850253294cff13

http://ummydownloader.com/.../file.php?id=default&f=&country=bh&ts=1462822756&s=c86495bfc612dd1d7395e07138cdef1c1d4d7692

http://ummydownloader.com/.../file.php?id=default&f=&country=sa&ts=1462665520&s=36b92b422c814053457e7c763fa8ba6ef9d826a3

http://ummydownloader.com/.../file.php?id=default&f=&country=sa&ts=1462786857&s=18c394891672605d0a352722aa41b2d83bc7f0d1

Latest 30 of 419 download URLs

Remove mbsetup_uvd-loader.exe - Powered by Reason Core Security