uplayinstaller.exe

Uplay 17.0 installer

Ubisoft Entertainment Sweden AB

This is a setup and installation application. The file has been seen being downloaded from ubi.li and multiple other hosts.
Publisher:
Ubisoft  (signed by Ubisoft Entertainment Sweden AB)

Product:
Uplay 17.0 installer

Description:
Ubisoft Uplay Installer

Version:
17.0.0.4674

MD5:
c0827e35a87b79af0f7b69dfe55680d1

SHA-1:
31de99a33298ac2e271ee5ac2c20d6875ff66501

SHA-256:
db3e3ba04284eb0f1e4c860fb329cfdc90803801108daff76d98c30d3d025109

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 6:39:26 AM UTC  (today)

File size:
62.2 MB (65,201,568 bytes)

Product version:
17.0.0.4674

Copyright:
Ubisoft

Trademarks:
Ubisoft, Uplay

Original file name:
Uplay Installer.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\uplayinstaller.exe

Digital Signature
Authority:
Symantec Corporation

Valid from:
1/28/2016 12:00:00 AM

Valid to:
3/28/2019 11:59:59 PM

Subject:
CN=Ubisoft Entertainment Sweden AB, O=Ubisoft Entertainment Sweden AB, L=Malmo, S=Skåne, C=SE

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
6341C8C11C28F83F5D595E83D5129569

File PE Metadata
Compilation timestamp:
12/27/2015 6:26:07 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
1572864:XWqDCo1Vyg+xdbrnXGVJpOQJioSSogkhfBD0:8ojygsXGbJgl

Entry address:
0x32A0

Entry point:
81, EC, D4, 02, 00, 00, 55, 56, 6A, 20, 33, ED, 5E, 89, 6C, 24, 0C, 68, 01, 80, 00, 00, C7, 44, 24, 0C, 00, A3, 40, 00, 89, 6C, 24, 18, FF, 15, B0, 80, 40, 00, FF, 15, AC, 80, 40, 00, 66, 3D, 06, 00, 74, 11, 55, E8, 51, 31, 00, 00, 3B, C5, 74, 07, 68, 00, 0C, 00, 00, FF, D0, 53, 57, 68, F4, A2, 40, 00, E8, CE, 30, 00, 00, 68, EC, A2, 40, 00, E8, C4, 30, 00, 00, 68, E0, A2, 40, 00, E8, BA, 30, 00, 00, 6A, 09, E8, 1F, 31, 00, 00, 6A, 07, E8, 18, 31, 00, 00, A3, 04, 4F, 43, 00, FF, 15, 44, 80, 40, 00, 55, FF...
 
[+]

Entropy:
7.9966  (probably packed)

Code size:
25 KB (25,600 bytes)

The file uplayinstaller.exe has been discovered within the following program.

About 1% of users remove it
 
Powered by Should I Remove It?

The file uplayinstaller.exe has been seen being distributed by the following 12 URLs.

http://ubi.li/eyje7

http://gsf-cf.softonic.com/ff6/07f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69662206&instance=softonic_en&type=PROGRAM&Expires=1425345454&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=czi7mDPLQeF0Hjt1vh80viIyeeqbA1mvogV~QegvQkOxgCzfz8OiDEqZn9BU~JthIUizPsB803HdrE7g0cAvIEADN8hlOw0Bw-rr2XTeSu4-5rPbWu0eGclVQ9HRIMnZOjDibna~05EW~P-FGGrRxU3k0oeh03dxNEE8vm1FDOA_&filename=UplayInstaller.exe

http://www.filehorse.com/download/file/.../

Scan uplayinstaller.exe - Powered by Reason Core Security