home

powercopy 1.6.exe

Setup Launcher

Youtica

Publisher:
Youtica

Product:
Setup Launcher

Description:
Youtica Setup Launcher

Version:
1.1.0.0

MD5:
919486eb285fec665958ba529c474e82

SHA-1:
2e82ccc618862cbcdc0331b8dbc8d695dfff115e

SHA-256:
9aadafe28ad30a2e7a09cd4a4274e8ffe591fe23fb3b6d9776a063a955dee6f4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/12/2025 7:20:15 PM UTC  (today)

File size:
4.8 MB (5,066,752 bytes)

Product version:
1.1.0.0

Copyright:
Copyright 2009. All rights reserved.

Original file name:
SetupLauncher.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\powercopy 1.6.exe

File PE Metadata
Compilation timestamp:
12/22/2009 11:54:39 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
49152:HxG+CeazD/SZZ4mMVbwN7Kq+ekGcuSJ9mp8jSplfBYJN7zUFUUT1o+TjySK8jh:HxG9eaf/nmuwEq+ekGcGB2N7zUFUUTrh

Entry address:
0x3AB3F

Entry point:
E9, AC, 30, 02, 00, E9, 77, 92, 00, 00, E9, 42, F9, 02, 00, E9, ED, 80, 01, 00, E9, 0A, FC, 06, 00, E9, 63, 17, 03, 00, E9, 6E, C1, 05, 00, E9, 89, 7F, 05, 00, E9, 24, F7, 04, 00, E9, 0F, BF, 02, 00, E9, 3A, 8D, 01, 00, E9, 95, 3C, 02, 00, E9, D0, 7D, 05, 00, E9, 03, 35, 01, 00, E9, 56, 34, 01, 00, E9, 51, B4, 01, 00, E9, 6C, 6B, 00, 00, E9, 97, 05, 06, 00, E9, 72, C4, 02, 00, E9, AD, 5C, 00, 00, E9, B8, CA, 04, 00, E9, A3, 44, 06, 00, E9, 56, FB, 06, 00, E9, B3, 34, 01, 00, E9, 64, 2E, 02, 00, E9, 9F, 24...
 
[+]

Entropy:
7.1726

Developed / compiled with:
Microsoft Visual C++ 8.0 (Debug)

Code size:
476 KB (487,424 bytes)

The file powercopy 1.6.exe has been seen being distributed by the following 7 URLs.

chrome-extension://bigefpfhnfcobdlfbedofhhaibnlghod/persistent/.../jUxnRYqT

https://app.box.com/index.php?rm=box_download_shared_file&shared_name=uqjf8ge2hmuc1l310z2y&file_id=f_19250435385

http://download995.mediafire.com/kd3kykfw8prg/.../PowerCopy 1.6.exe

https://mega.nz/persistent/.../jUxnRYqT

https://app.box.com/index.php?rm=box_download_shared_file&shared_name=b59bdddecc9f540ae33c&file_id=f_1976394520

https://mega.nz/temporary/.../jUxnRYqT

http://www.mediafire.com/download/.../PowerCopy_1.6.exe

Scan powercopy 1.6.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.