home

unitywebplayer.exe

Unity Web Player

Unity Technologies ApS

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This file is installed with the program Unity. The file has been seen being downloaded from mujsoubor.cz and multiple other hosts.
Publisher:
Unity Technologies ApS  (signed and verified)

Product:
Unity Web Player

Description:
Unity Web Player Installer

Version:
4.1.2.0

MD5:
1624d43077bd715855f171f0c5045018

SHA-1:
1ae2080bf46c99bc34c5f5e9f7913118f470ba4e

SHA-256:
169a8eeb3035c8bf2efd3c8645d9cf1153d290bd1f7185d2b357222a155d42de

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 1:24:52 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Trojan.Dropper!6.3CE
23.00.65.131220

File size:
628.4 KB (643,520 bytes)

Copyright:
(c) 2012 Unity Technologies ApS. All rights reserved.

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Common path:
C:\users\{user}\appdata\local\temp\unitywebplayer.exe

Digital Signature
Signed by:
Unity Technologies ApS

Authority:
Thawte, Inc.

Valid from:
6/15/2011 8:00:00 AM

Valid to:
8/7/2013 7:59:59 AM

Subject:
CN=Unity Technologies ApS, OU=SECURE APPLICATION DEVELOPMENT, O=Unity Technologies ApS, L=Copenhagen, S=Copenhagen, C=DK

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
1D23AC21EEDCC535C67E84A4EC835CE7

File PE Metadata
Compilation timestamp:
10/13/2010 7:15:28 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:JQzk8Gi0apPKC/jyla2P3xb//6g6Q+5rdjTJvRCEzZF+4B3nzHmBNZvTy4JN:JYk8Gi0Nomb/cXrd/n+DB/JN

Entry address:
0x3551

Entry point:
81, EC, D4, 02, 00, 00, 53, 55, 56, 57, 6A, 20, 33, ED, 5E, 89, 6C, 24, 18, C7, 44, 24, 10, D8, 84, 40, 00, 89, 6C, 24, 14, FF, 15, 30, 80, 40, 00, 68, 01, 80, 00, 00, FF, 15, B8, 80, 40, 00, 55, FF, 15, B0, 82, 40, 00, 6A, 08, A3, 18, A6, 42, 00, E8, 9C, 27, 00, 00, 55, 68, B4, 02, 00, 00, A3, 20, A5, 42, 00, 8D, 44, 24, 38, 50, 55, 68, 1C, 86, 40, 00, FF, 15, 80, 81, 40, 00, 68, 04, 86, 40, 00, 68, 20, 95, 42, 00, E8, 6A, 26, 00, 00, FF, 15, B4, 80, 40, 00, 50, BF, 00, 50, 43, 00, 57, E8, 58, 26, 00, 00...
 
[+]

Entropy:
7.7066

Packer / compiler:
Nullsoft install system v2.x

Code size:
25 KB (25,600 bytes)

The file unitywebplayer.exe has been discovered within the following program.

Unity  by Unity Technologies ApS
Publisher's description - “Unity is a game development ecosystem: a powerful rendering engine fully integrated with a complete set of intuitive tools and rapid workflows to create interactive 3D content; easy multiplatform publishing; thousands of quality, ready-made assets in the Asset Store and a knowledge-sharing Community.”
www.unity3d.com
11% remove it
 
Powered by Should I Remove It?

The file unitywebplayer.exe has been seen being distributed by the following 17 URLs.

http://mujsoubor.cz/download/doplnky-a-mody-do-her/unity-web-player/js8bbp9do84dtkfmivvro55897/.../unity-web-player_4.0.1.exe

http://mujsoubor.cz/download/doplnky-a-mody-do-her/unity-web-player/n68s1iae6ga4e6d55ceri65lb0/.../unity-web-player_4.0.1.exe

http://mujsoubor.cz/download/doplnky-a-mody-do-her/unity-web-player/oqosa1b8g8em7gjqsus9gq2gl4/.../unity-web-player_4.0.1.exe

http://mujsoubor.cz/download/doplnky-a-mody-do-her/unity-web-player/lbbgac51kc1fdu6hrgs9tndm85/.../unity-web-player_4.0.1.exe

http://mujsoubor.cz/download/doplnky-a-mody-do-her/unity-web-player/3ta068m8566h4jm8ls8d2cmao5/.../unity-web-player_4.0.1.exe

http://files.haohaowan.com/.../webplayer.exe

http://webplayer.unity3d.com/.../UnityWebPlayer.exe

http://mujsoubor.cz/download/doplnky-a-mody-do-her/unity-web-player/a2p4g6n51qcj9tjt9svo1kid75/.../unity-web-player_4.0.1.exe

http://mujsoubor.cz/download/doplnky-a-mody-do-her/unity-web-player/cbf7gb1tn5hfvgheo6r4m3aik2/.../unity-web-player_4.0.1.exe

http://mujsoubor.cz/download/doplnky-a-mody-do-her/unity-web-player/53nin18117erdug1crdp5p8523/.../unity-web-player_4.0.1.exe

http://mujsoubor.cz/download/doplnky-a-mody-do-her/unity-web-player/0us515v1kq2ppb9lj3jvhsv265/.../unity-web-player_4.0.1.exe

http://mujsoubor.cz/download/doplnky-a-mody-do-her/unity-web-player/cuvtvvhssm10pui3ns6mnki096/.../unity-web-player_4.0.1.exe

http://www.mobil1racingacademy.com/getUnity.php

http://mujsoubor.cz/download/doplnky-a-mody-do-her/unity-web-player/t4s6gibipg7k0286juq8tbahr0/.../unity-web-player_4.0.1.exe

http://www.gm99.com/.../win_webplayer.exe

http://webplayer.unity3d.com/.../UnityWebPlayer.exe

https://ssl-webplayer.unity3d.com/.../UnityWebPlayer.exe

Scan unitywebplayer.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.