uplayermediaplayer-setup.exe

Full Spectrum Interactive

The application uplayermediaplayer-setup.exe by Full Spectrum Interactive has been detected as a potentially unwanted program by 11 anti-malware scanners. The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from network.adsmarket.com and multiple other hosts.
Publisher:
Full Spectrum Interactive  (signed and verified)

MD5:
6f8086d06485a7a7623815544c54c610

SHA-1:
1a7a6dbc9ed6d503dae910a25807dae838c22f40

SHA-256:
2456d14b7e209f4f420a2cc0f4eef68db6f3ea4e20a5e45e911598e3d1f4f064

Scanner detections:
11 / 68

Status:
Potentially unwanted

Analysis date:
11/27/2024 3:14:39 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
Adware/DownloadAdmin.AH.5
7.11.125.0

Dr.Web
Adware.DownloadAdmin.1
9.0.1.06

ESET NOD32
Win32/DownloadAdmin
8.9117

K7 AntiVirus
Unwanted-Program
13.175.10825

Malwarebytes
PUP.Optional.FullSpectrumAdmin
v2014.01.06.07

NANO AntiVirus
Trojan.Win32.Downware.crgjbr
0.28.0.57029

Reason Heuristics
PUP.Installer.FullSpectrumInteractive.Y
14.2.17.8

Sophos
Download Admin
4.95

Trend Micro House Call
TROJ_GEN.F47V0921
7.2.6

VIPRE Antivirus
DownloadAdmin
23896

File size:
576.7 KB (590,496 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\uplayermediaplayer-setup.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
6/10/2012 5:00:00 PM

Valid to:
6/10/2014 4:59:59 PM

Subject:
CN=Full Spectrum Interactive, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Full Spectrum Interactive, L=San Francisco, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1A1AEF489C94F2C514EA16B9BEBCDEFC

File PE Metadata
Compilation timestamp:
6/22/2012 11:07:51 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:TYQxt2ctKQEGvjITZD+jcEckHnyudpc5y/zDnYDBrfw8Ax:TlxIQEMIT5dAzc5y/zUDBrS

Entry address:
0x333B

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, B0, 73, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, C0, 70, 40, 00, 53, FF, 15, 88, 72, 40, 00, 6A, 08, A3, B8, 3C, 42, 00, E8, 2C, 25, 00, 00, 53, 68, 60, 01, 00, 00, A3, C0, 3B, 42, 00, 8D, 44, 24, 38, 50, 53, 68, 43, 74, 40, 00, FF, 15, 64, 71, 40, 00, 68, 38, 74, 40, 00, 68, C0, 33, 42, 00, E8, 1D, 24, 00, 00, FF, 15, BC, 70, 40, 00, 50, BF, 00, 90, 42, 00, 57, E8, 0B, 24, 00, 00...
 
[+]

Entropy:
7.9663

Packer / compiler:
Nullsoft install system v2.x

Code size:
23 KB (23,552 bytes)

The file uplayermediaplayer-setup.exe has been seen being distributed by the following 50 URLs.

http://network.adsmarket.com/.../iWhvm2acqZWLaW-bX8p6w4iQappgooKYjGKYmWWee5uJkHGaXqF7w45icp5nnA?dp=NH0m2Lus7jIpiKWc5c4z1tg2Cu4tZ11tWG5HnirtjEp66J_S4ZfphBaTbBoIVm6af6HsPwwMue9dE5DMsnTqdMWRuQ0akAaJVEVyqMHA6yTLhUPNHl4qiDPVU1m0h-RE9U69EYoqmn-HlzAmEgZ0SeuvlvomxzTLgcMVkSQy9tHKxI0hqfCBv8-wEHqa62Y0wkjcXXMw88ows0tlKiUrEEG1wjbVZEEHbQFuByvNOAZUSBADHK6YcxXnZSLW_9Og8f4mwa_eRvJenKg9dUfQwHDh8G-CykHenxz7Etsxd47tkS7iTgmrSG3XBfMU3TZy6ZV20-I1Fd_nNEHqqdOA7zjS_dCl6cqdKktKbtdBs_BQZUxonSc7hw

http://s.m2pub.com/event/click/0/G9-P94e67xhrVHresumbojaMEhN6HZ_VEyVOOCQWs2Hehk8wTDG-v5B9pimCXxL-ZwWvGlLObpgyEex_XRfl1a33Op28dUHZG0HAjOgV_J1sdU6JlZT9bXthtFQPhcKD8VlU3JK1QadmNec6GJdNUuk6AB4bpp9D9iw8YonJSNREoEXafPFosplEf5nSNwqYoQLHr6o0pEhyFRNvwHwho6vSjZ-y7ZF6pHkZ_Tg7fpKlkrKiECclxn0LsHwiOnucGYFDIRNYIHOJIV_7TdsBUW1SYc-EF9rLip-0nsGS7mJUAzvK3B3FZzBGjJCGAy-_D251T1r16B329--Vi2-Zc9tVNDH1sSMeEwZyFLaMUTTyht_0Ij0/.../

http://s.m2pub.com/event/click/0/ts_X5-_k98M5WahbIWXzFGZ_k2uquA3fvIsI7MWfjJ5g_SiKp94la2W4eOyNFKUXuce1cqGVZSYQcDZoJdPU5iklB5_TfSjUfpC9fN2dKEi15sXrR3dt2RtfHzSHBYfKU52jW6XdNb9KkimuUTTRUhP32SbwHG2iEPcpUxtNIgdgbnwOxzhye1PABaKp_Jp1d99HbfVzOLI4j6YjZ3Q3p_jBbDwFmOf2NiIKjYlJrxAkCwdACrXb94Sw4JzaOx5wkqJurI570Wx0LotZDxZ4Ne1yipDlVtjbShAq7OlBY8o02ZiCNz4wsK5-KCjJfVBzXb17pFjBBtj-DjnaUdorLN-XZk6THP01mTqNp_mGLKrteOsX3k3gMQ/.../

http://s.m2pub.com/event/click/0/EOUdfraVRkFQOtI_0bKigUcHetc3kzakbj56ePXat5IVmcrvsPsIeKFsrNNcziRTq5rULI8oggONCxSe4kEIEf9qieLulPG4ly3M_s54VqsJnetHBrUGF8WAaLYrTmyVxqSUdzxV2JijywZzpbJWw0SFfN1hot_vx4tt0cPgVzNbdV5UqSJrOXGGMd_r5BkKsG1A8NYzdTtMo5tDw-JFcuGENzSfmNurZ7B-RIHFQqstHHOuo67kGRlnuX3capmzvy-jOIznuqNvTEOOQfASmocCOPvXp0cPlOJx6O22okPCaebOafilgYqD4UcfD22JjVBI2otO3U9zLng3mjK5PKM8RzdTFA2rCmNPtD8FwC1ieSrBURTq/.../

http://network.adsmarket.com/.../iWhvm2acqZWLaW-bX8p6w4iQappgooKYj2KYmWWee5uJkHGaXqF7w45jaZVgnA?dp=U8oA4PV6_R_dlXh_2O_DVF-cQpgQ2sMzZc8TXoOnhNTYetDwiMQ8S2AumwX9iOk48ByjIq03c4JR82mdbSdC3uMvfuO_tSHtxCwVjYf5IAnf2c3OwI21xwJ7ugrragVqOlAo-d8yeXVofRM8H4fDY8yVn8CLVzhZNYdqeTcOZ6IX360mcO0PwK2-1p2hLnQ1FFUvNtam6pzETF3pzcj1SG8Mq6Q1Ka-BfzwfEX7MCK8w-tow2fobiv9y1D2REQ9qWJ7dXlkAcOIJjszI1pafA8uDs4pQMzZxlWOaFVMNorBLH3N-PQL4tyjVtZdfrvE2ZXUZiCCEqD_T3Zg-OgP2bofvEdGzZz6-qPIKVnja2bfbTKlmwSQ

http://network.adsmarket.com/.../iWhvm2acqZiLY2uWX8p6w4iQappgooKYjGKYmWWee5uJkHGaXqF7w45icp5nnA?dp=1RBbFm1L56-SgJDEqNn2iTJbTLZEFMTL5Ccgo1tGvJ2xDNYcnKxtYXJJR4Pm9ykG_vynYdgZrEGKeXvNqjmxOD-xWlv3bPi2C8JyiEpO5IhXCrWv4OpT33e625N4irI3HC5XCWS36ZoacsXAyHqknAPwwmvkvhWxu0qS-ClGU0Bddzmz7AvodHG0DOACW9AbWqZhD9rVUQa0bC8pN6izjJedEPBJseEGUMUHovIPDSNJAgzy3KhKrrDoddYdb8WP_9r-ogx47I8KRlKdeZ63nEL8zfK1_SVPt2AvayKY90STLt5x-oJY0pVAcH4C9gLHTDt4qRxXvtRbgt1vwPnvlVDF6fMmijwPXc0t1uk1owy4KOwzVEzm0w

http://s.m2pub.com/event/click/0/CiQ5NWRmNzA4Zi01ZWMxLTQ5MWQtYmNhOC02MTdlNWQ0Y2ZiMmMiCDExOTQ1NjI3KggxMTkzMzUwNzIIMTE4ODUxMDQ6Bm1hdG9teUIIMTE3MzAwNDhKCDExNzA4MTEzUgJVU1oCTUFiCDExOTI4MTY5agZDaHJvbWWQAQGYAQGoAQCyASA3ZmM2NDk3MmUxODgxMWUyYmZmODEyMzEzZDJkNTliZsIBDWFkLnZ1aWFkcy5vcmfIAQHQAQHdAQAAAADlAQAAAADtAQAAAADwAQH4AQGCAgljMTE4NzkxMDmIAgCQAgCYAgCgAgGqAgA=/.../

http://s.m2pub.com/event/click/0/jL8tHAWW28HFrtptVB_BMUdLGozi3930l5rVDpwOAfW7OX6-4zkAiJXnm5B_G1Bp4r-JvSqs-VyoL8DpGvzJlgz1PSxklwaGmEix-_lMdTO006yHf-z3ZO5sonGNNmoTm4Im8dwdTMcV_zu9LQr3gjLp9rovwna97FB5Z6mX2Qc1FD4t3BZAcRgAw94zKB5qn8bdIGVIry4gWK8ifcQDzSVvrXcVr-nZSliMTLMh-V39CvXRCzlNACSHFblWcktpkz1e3Zki5I9TbMdn4usK86-uBUbqvFMoDNT3crnNzmy02_cLNHzvyBNlP5gvJ2G85HUyiziCurzWMx2IWXmFcFFX6fpydkc6h5dtKiBv3JTdk4bFmxEUTDPrjvJznwTQNiG8Zr6OOGQ/.../

http://network.adsmarket.com/.../iWhvm2acqZWLaW-bX8p6w4iQappgooKYjGKYmWWee5uJkHGaXqF7w45icp5nnA?dp=-tg3sYYsnAUa9D0KBD5s-yeIC47kIWLcl_PsjfGIwHoV9REcaJrR7tQiRfcipVJUeaHzUTIEg72PaKn9vhYa4_oFEoWhudn5blJio-VgpdX1RJ07XbBtBJqoguu6b9V4NeGWphz8W5WNpl5uYskvXWpJSJLFJ0sE8nIi9oPxvMrso51U6DGt5J8m3RwzwnnQpjPh24qk8CYtqlZxXMHm_SAdUKFIUcs6oq4djLRXQTwBu9K_WAu0pc_1Y0TI128RGvxfpqQdDRmLJ5AJqUrLzUQ_OU866T2oYjhfWqibHSIEl3jCKHqjDEXzOstgFX7ULdYrPy65y-6951LHpShaowm_pE1ome6Mt6wV24hLA_Tpv-oJ94BFAA

http://s.m2pub.com/event/click/0/T4s_ctCy1cLygqULMMz7j4gcOVJeSBUBIxZSj7qBcXNA9vDXH7Q8jZhOuUpQhHat6GBfUTOw2P6OMx0PoXfKv2L7s3Lok_gxrME3kLPoM9Av5sxh0q-hU_nJB5-6yyK6Jl685JPvtIGjCVKgL55cBxmbuu05M02XeQiWY7VsrJEX1Geb_JUMPBpDkX26ryrDDXDyi_wpbNo5exd72758xjOSULxkMhQ1D6XZeZsKWZ_Q4aHbYDG502Mj0cZrpNiJ7D6JJkjtNDAOwinDSYHL_-LPKU1TXxZSyEnu5NyobUhCmGZxzb8Zz75jCSbg8R5w_KKoNvr5dAEp58kw29VVmIV-Zae48gilIEF7EaBNY-RsuVupdYfbd5KwuSolH_WbqGybrw/.../

http://s.m2pub.com/event/click/0/qc1M_uWT7RS7Xc94EANOqpstfl1xdEscm1Xlcgm3_POWllibmw8TV6XA66ZCCzJsW263qmJRDA5SdR6v1bo3-stOx6K4RS2QOfgj-g7aeDIwz3mf6XJpeKcx8QTWHgOZe7CpFo_wqm6s8VDfgks7vXABc8Ma0JxsE7kmZjTZFHncOZFaQCWIBwf4boWYyJO47K1YQ5GBpPhNiwgnhosm73k-cIQ2BHffa0nAbKteQH4c-k9GBu9boB0sx-uogMhoR3gssMCJSfsQhouRLSjlK-b3mAtOkDpQGpMzf3bg0rwoJwZYPD7aQP1kcPoJ1eizr-ED1fhTHui9zHuby5TTb-nOyZW6jDeiWQnEKwsrqZw5FxktYWZZ0Q/.../

http://network.adsmarket.com/.../iWhvm2acqZWLaW-bX8p6w4iQappgooKYjGKYmWWee5uJkHGaXqF7w45icp5nnA?dp=VnWdAM2fnNhwUWG3Ma_LafxJo2lNS72LAR2H_vNudUDJKmpd_8nmEfAYZ09-JLRHHO9BaT5S9V2Py7-ooEFqZ56WmjjScp_sRzgWnNlat4QytuMcC19RNSypaBD7qmbTGyR5849iZ9P2sxQGvr7snbkSH3lJQAofqYyPCPMNGaMEpBDCB13wf1OkiBzNo1U8aAAr4450hMZAC8jkRg3BxrHoU3N6JMGKgadXLb48iGcs0rKSxURfwGmInp6BaKliEGD0eNSKXkgw2olXUaG56hUJC-1uJCkMxXEbgbMjwLw_LbdM1FlgNCAQJSoXnAx0qaXnYOLzbMPAs8sGKTIwkO93rzb-kve1gdRM9na9MK8De8FebbyQcQ

http://s.m2pub.com/event/click/0/FOgDL6_1caSuQAibL4_8MYHaZ66ZmxCWDGTbP8fUUJrVrsdLW13-AVo_N-3X4mpLIAeTymTnibUKptaz0BjJsqjWtUTFkNLUUBKcAtssm-TREPbdaO74WNdAwXsgQUFVttIhoAmRifdoEqTDgBcNotb1tW9Sf8mccWBTcGRmJUakynk0AHaae9bmGSPF9KQf8vKbRB21c67PwM9I0f1iP-tYZiHCd9VPYRQxcDq-_bXn-jkrXp4eN57mCxhl-XbLJYOUka-nQWV-8RY5R4cwhBC9cqd-w2QIoqSBd68LS40XXvG88k6vSOvGmLsqcMiXcPEOkrFCXGkSUghaTK1EvMRK_8TONlrSxS-SrFdrPjjLY-CvsfWeUg/.../

http://s.m2pub.com/event/click/0/YoIVv3P6CDw4YRrYmHtiYfgRmKLJoQG-BGTIsIaLXyueni5Djh4MuGbanCtyhurhBp0nGkOorM2Gs30fEuqAfp40lpmWWWD0qYmm6CVHxhurQKy46YVSIvm_9KLGRhnb8gRaRpXWRcrSwDtialH08oSvi9FViBYPuaE1Oj8D-9nlWMu2r6chUyWwTzXk74PyxBWByfOA12YtC1EO1_dCIsv5_T4EMBUCoTdDQr8kvAhkFu4WlzZqjf4Kk6U5lc98huqGOrETgut1xBI6UKlQ82CGMNPVTNGSd7H1yTexyyCDoiBDqUOmQN_RZy-AjVSyRuP6SftIsv8ykjpIfVkvu_bYUS7AdjfsmezMrhNUbSpIIl92byzt/.../

http://network.adsmarket.com/.../iWhvm2acqZWLaW-bX8p6w4iQappgooKYjGKYmWWee5uJkHGaXqF7w45icp5nnA?dp=qPMxCdm5fYayCkkfXOsMBbd8zo0iJK2xnbMuoV4Rqzu5RwRIm541uQdZqkbCfDyyGaWPW5QtpVwYMriWvZyZzet-uV6ABJipJvSmQ3qG7aqzC5LcToIlWYnn_A61ssC6P2T_ICfxicS0-RAmeP98xRO4lpASjmUzuke6vhHUVJTUUNg0pZZrXTolUgesAI7vU5ljZrxNm7BTZHu0DVkZkmk-BBFOeirhtNXoDsCd4uyEmGobe961wx4tCK-i35UwRM4lb34x0KBCkwXXHk87MdQShdbOjxuDhNyY89JLBxPZH49-f4ImPsECSRo4M3gHFkmOeYfs0mA7nqc0a6Iw630bPk6-moRQppTxUXisd0Im-Ji8DWAbRQ

http://s.m2pub.com/event/click/0/U9tsmtjA3q-j1mdAsug-oPiTUQrMcqmF3Zuuj-l5-p5kMF8A21KuVt4UrwoX7dtW6eiA909gjSoblH2Ll75TYCo0PFIwm0meyRWYvVv4fdu1VxcqN8UwmLi3S_yKPm77dH-FXsw0yTR1_rTdgjwlRb0aE6DsRNfKn9JcnEeKnCNyFtwnD5mMQzPwYlhOpgmJSHCwUPDCdRL4KyXs2yWNkjG2-znDXtSLxoOT3QA_ypw-HXYB7A53s7rF2ebSEk94uMy7OdSroNyiXcgCX1Qzsxw2SuS-f1kKOvW7p61lEmbVYBMeLdPrCl6xeXWAOyvPgYQQdqeFh2xgQLmpYEWCEGweN21rmc0zjRKLDWprq1hppGpmI-U/.../

http://s.m2pub.com/event/click/0/z_aPJiWQmwiARLxSG6l7G7j735delXrv7NDyi67kPiawG0AE5uO-gAxouXQZ9NN3oKu6bKqotg-c_SCAzoJ4Ilz3QfNySKnPMXsmBbg6Rlz3gd1JWUXfeLOlehesw_ZDm_ydXXIY7kJZ8dGP-ifbKhtiH7ih8d7yBB_WystVE5qkylMZBNrE0RMFDJRcRgnqzuoJERrFXr-IJj4xgFlKjstrb_Cm2z85uKPrOhK4n8XuQ1z3CHlpMvbv-Q9r2gnpSDYsVdKEjsn8UVUU_hWnstsMQUkRtiIe7KDYCWbHBlWDaOc2hD8F9oETAagUGEH98YhMddjI7GD34H_3XoL0gRa9MKweFxSCgvmOBRs5AgLsIq7Z9Gs1u8HHfnHQecScWDQ/.../

Latest 30 of 181 download URLs

Remove uplayermediaplayer-setup.exe - Powered by Reason Core Security