home

softonicdownloader_pour_utorrent.exe

Softonic Downloader

Softonic

The application softonicdownloader_pour_utorrent.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the Softonic Downloader installer, however the file is not signed with an authenticode signature from a trusted source. The file has been seen being downloaded from utorrent.softonic.fr.
Publisher:
Softonic

Product:
Softonic Downloader

Version:
1, 38, 0, 0

MD5:
f786df741984736b79fc39c824c26b14

SHA-1:
82d9c4a34e7816c5840f48edd79dec88bcefcadb

Scanner detections:
1 / 68

Status:
Potentially unwanted

Description:
This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:
11/26/2024 8:00:01 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Softonic.Bundler.Meta (L)
16.3.29.20

File size:
460.4 KB (471,400 bytes)

Product version:
1, 38, 0, 0

Copyright:
Copyright (C) 2012

Original file name:
SoftonicDownloader.exe

File type:
Executable application (Win32 EXE)

Bundler/Installer:
Softonic Downloader

Language:
Espagnol (alphabet international)

Common path:
C:\documents and settings\administrateur\mes documents\downloads\softonicdownloader_pour_utorrent.exe

File PE Metadata
Compilation timestamp:
4/10/2013 11:30:00 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:r9pS2sNXlu5Ei0LFAxELTRKYoSi8dqIqmk8Z:r9p2k5DEWELUB87vkS

Entry address:
0x1554B0

Entry point:
F3, 0F, AF, EF, 13, CB, 89, CF, FF, C5, 86, C9, 88, FF, 88, D9, 34, 3A, 8D, 3D, 20, 9B, 23, 89, 0A, CA, 0F, BE, CC, 8B, D2, 81, FA, C6, 43, 00, 00, 78, 0E, 84, FF, 81, F5, 4F, F1, 56, 9F, 8D, 1D, D0, 76, BC, E8, F3, 81, E1, B7, A0, 8A, 2D, 38, F3, 68, 2F, D4, 75, 00, 86, F2, 0F, BF, F1, FF, C1, 69, CB, CA, 47, 4A, 21, BA, D8, B0, 92, 84, 71, 07, 69, DE, 02, 33, 40, 77, F3, 8D, 3D, 38, 05, 00, 00, 69, F6, F7, ED, BD, 4F, 86, EE, 8A, C9, 8A, D7, 84, DA, 81, FE, F2, A6, 00, 00, 73, 05, F6, C7, 28, 88, E6, 0F...
 
[+]

Code size:
344 KB (352,256 bytes)

The file softonicdownloader_pour_utorrent.exe has been seen being distributed by the following URL.

http://utorrent.softonic.fr/universaldownloader-launch

Remove softonicdownloader_pour_utorrent.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.