ultimatespeedtester.exe

UltimateSpeedTester

The executable ultimatespeedtester.exe has been detected as malware by 1 anti-virus scanner. It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘UltimateSpeedTester’. This file is typically installed with the program UltimateSpeedTester - Ultimate Speed Tester for Desktop by UltimateSpeedTester.
Publisher:
UltimateSpeedTester  (signed and verified)

MD5:
86de6c2e153d3f137397d78a93c9a69a

SHA-1:
59e9a3207231d0a84238fc130ec55261bba23767

SHA-256:
5deef90c2a984dda08297119411d94b79cb6f56955667f88cdcb5dc0a490478c

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
12/25/2024 5:34:35 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
16.8.2.14

File size:
47.3 MB (49,612,576 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\roaming\ultimatespeedtester\ultimatespeedtester.exe

Digital Signature
Authority:
UltimateSpeedTester

Valid from:
12/24/2015 10:07:28 PM

Valid to:
12/21/2025 10:07:28 PM

Subject:
CN=UltimateSpeedTester, O=UltimateSpeedTester, S=Some-State, C=US

Issuer:
CN=UltimateSpeedTester, O=UltimateSpeedTester, S=Some-State, C=US

Serial number:
00D9492C315FD8655A

File PE Metadata
Compilation timestamp:
2/20/2016 4:43:51 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
786432:uuK9C64r1c7VQZgnUrurLpbH05yL5dsuUQq6+4UYOkdOXQBbB8H:XwC64r1c6ZgnUSrLpbUAdBUQq6/BLVFo

Entry address:
0x1C9A031

Entry point:
E8, 5A, 3A, 01, 00, E9, 7F, FE, FF, FF, 55, 8B, EC, 8B, 55, 0C, A1, 20, A8, EC, 02, F7, D2, 8B, 4D, 08, 23, D0, 23, 4D, 0C, 0B, D1, 89, 15, 20, A8, EC, 02, 5D, C3, E8, 09, 21, 00, 00, 85, C0, 74, 08, 6A, 16, E8, CC, 21, 00, 00, 59, F6, 05, 20, A8, EC, 02, 02, 74, 21, 6A, 17, E8, D9, 20, 60, 00, 85, C0, 74, 05, 6A, 07, 59, CD, 29, 6A, 01, 68, 15, 00, 00, 40, 6A, 03, E8, A9, F8, FF, FF, 83, C4, 0C, 6A, 03, E8, 16, FC, FF, FF, CC, 55, 8B, EC, 8D, 45, 18, 50, 6A, 00, FF, 75, 14, FF, 75, 10, FF, 75, 0C, FF, 75...
 
[+]

Code size:
34.9 MB (36,634,112 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
UltimateSpeedTester

Command:
C:\users\{user}\appdata\roaming\ultimatespeedtester\ultimatespeedtester.exe su


The file ultimatespeedtester.exe has been discovered within the following program.

About 4% of users remove it
 
Powered by Should I Remove It?

The executing file has been seen to make the following network communication in live environments.

TCP (HTTP):
Connects to ec2-50-17-253-207.compute-1.amazonaws.com  (50.17.253.207:80)

Remove ultimatespeedtester.exe - Powered by Reason Core Security