» ucpsetup.exe
Overview
Analysis
File Details
Downloads (53)

ucpsetup.exe

Ultra Core Protector

The application ucpsetup.exe, “Ultra Core Protector Installer” by Ultra Core Protector has been detected as a potentially unwanted program by 2 anti-malware scanners. This is a setup and installation application and has been known to bundle potentially unwanted software. The file has been seen being downloaded from download1981.mediafire.com and multiple other hosts.

File name:

ucpsetup.exe

Publisher:

Ultra Core Protector (signed and verified)

Description:

Ultra Core Protector Installer

Version:

8.5

MD5:

55f53a1cd7a0f90d007f031641fae38c

SHA-1:

dbeedcd8d581f47db0a67d2008f4be79a2e717ea

SHA-256:

11548214f2cada30866854d59edb17a3b0c42975c63d8d8cbcbf50e17339775e

Scanner detections:

2 / 68

Status:

Potentially unwanted

Analysis date:

11/25/2024 5:00:32 PM UTC (today)

Scan engine

Detection

Engine version

Comodo Security

ApplicUnsaf.Win32.Renos.~FAT

23359

Reason Heuristics

PUP.UltraCoreProtector.Installer (M)

15.10.6.10

File size:

2.2 MB (2,347,144 bytes)

Product version:

8.5

File type:

Executable application (Win32 EXE)

Language:

Engleski (Sjedinjene Države)

Common path:

C:\users\{user}\downloads\ucpsetup.exe

Digital Signature

Signed by:

Ultra Core Protector

Authority:

Ultra Core Protector

Valid from:

9/6/2015 7:18:17 AM

Valid to:

1/1/2040 12:59:59 AM

Subject:

CN=Endi, OU=http://ucp-anticheat.org, E=support@ucp-anticheat.org, O=Ultra Core Protector, C=RU

Issuer:

CN=Endi, OU=http://ucp-anticheat.org, E=support@ucp-anticheat.org, O=Ultra Core Protector, C=RU

Serial number:

0227BF34C6CA4A8F419530419D77F261

File PE Metadata

Compilation timestamp:

9/6/2015 4:53:22 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

5.12

CTPH (ssdeep):

49152:rDJhD6SzReGmG6NWgdKj8S7tWMkNSh/eWCB0g+Fz1aR2Mt8XI7wZZ4oX/EK6JqeZ:rDJhhzRRPGWIKj8S7tWMS4/eWCB0g+F0

Entry address:

0x2EA040

Entry point:

60, BE, 00, 30, 4B, 00, 8D, BE, 00, E0, F4, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89... 
[+]

Entropy:

7.7736

Packer / compiler:

UPX 2.90LZMA

Code size:

2.2 MB (2,326,528 bytes)

The file ucpsetup.exe has been seen being distributed by the following 50 URLs.

http://download1981.mediafire.com/uyh5ewhe9y9g/.../ucpsetup.exe

http://download1981.mediafire.com/4xv7cavr0bqg/.../ucpsetup.exe

http://download1713.mediafire.com/04tv7yvd4csg/.../ucpsetup.exe

http://download1895.mediafire.com/5gnvx6gi1frg/.../ucpsetup.exe

http://download1895.mediafire.com/3wlz5kcg879g/.../ucpsetup.exe

http://nnmuz.com/.../download.php?id=161378

http://download1981.mediafire.com/hwp9vle4vmyg/.../ucpsetup.exe

https://downloader.disk.yandex.ua/disk/2ccd2aaf8e2f70af12ebcb2dbc449a592fcfb6b1a4498b62852f485872fd8873/57ebed75/.../x-msdownload&fsize=2347144&hid=568bde313f0253b02a733a7bad9078a5&media_type=executable&tknv=v2

https://downloader.disk.yandex.com/disk/71f0b467fc912a6070fdb5693d16f67350cdfd2f1265aa581d3f5bbe45cd8ab1/586dad9b/.../x-msdownload&fsize=2347144&hid=568bde313f0253b02a733a7bad9078a5&media_type=executable&tknv=v2

https://fs13n5.sendspace.com/dl/e518eced32fce159b4dfc65d7bd83ddb/57dd3adb715c6589/.../ucpsetup.exe

http://cs.fariya.com/.../Anti-Cheat UCP.exe

http://download891.mediafire.com/j6jvy60cv77g/.../ucpsetup.exe

https://fs05n2.sendspace.com/dl/00ad649aab685b64203a7d86715d9c31/56a2626f674785e4/.../ucpsetup.exe

http://download891.mediafire.com/isiauvaaujhg/.../ucpsetup.exe

http://download1607.mediafire.com/x4ae04qr3kxg/.../8.5.exe

http://download1625.mediafire.com/43a8wa6ra4ag/.../ucpsetup.exe

http://download1607.mediafire.com/r3p3zwuc6ctg/.../ucpsetup.exe

http://download891.mediafire.com/09ihd634sghg/.../ucpsetup.exe

http://download1607.mediafire.com/3xbmo2pkob9g/.../ucpsetup.exe

http://download1607.mediafire.com/cf2c4dz3itqg/.../ucpsetup.exe

http://download891.mediafire.com/gsbwqqk8k8eg/.../ucpsetup.exe

http://download1625.mediafire.com/gf4tt3b7umbg/.../ucpsetup.exe

https://fs04n5.sendspace.com/dl/283f7971885bdd76e9eb7f52dd229e1c/57a0e3e66ec68477/.../ucpsetup.exe

http://download1625.mediafire.com/ptj82rb9qwcg/.../ucpsetup.exe

http://download1981.mediafire.com/q0qcc7qfmryg/.../ucpsetup.exe

http://download891.mediafire.com/h121g2fffbyg/.../ucpsetup.exe

https://mega.nz/temporary/.../d8QV1QTL

http://download1607.mediafire.com/1xjsvt0bi0ug/.../ucpsetup.exe

http://download1607.mediafire.com/e2uw7bmr1d8g/.../ucpsetup.exe

https://fs12n1.sendspace.com/dl/8b3edd75b5957f2bb1865fcccf403f10/56ad14043d541bd5/.../ucpsetup (3).exe

Latest 30 of 53 download URLs

Remove ucpsetup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.