» uTorrent.exe
Overview
Analysis
File Details
Behaviors (1)
Programs (1)
Downloads (31)

uTorrent.exe

µTorrent

BitTorrent Inc

µTorrent is a free ad-supported lightweight BitTorrent client. This is a setup program which is used to install the application. It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘uTorrent’. This file is installed with the program µTorrent. The file has been seen being downloaded from dw.uptodown.com and multiple other hosts.

File name:

uTorrent.exe

Publisher:

BitTorrent, Inc. (signed by BitTorrent Inc)

Product:

µTorrent

Version:

3.1.3.26837

MD5:

ce84397598053d7a0f74d95d11f2accd

SHA-1:

1c47a01f93026688c2e5afb899596793b5e1c12d

SHA-256:

09833e2ad4a02415e24eab4e10c2709c62e79f4240b59bf50021075eb6badd83

Scanner detections:

2 / 68

Status:

Clean (2 probable false positive detections)

Explanation:

These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:

11/23/2024 10:18:27 AM UTC (today)

Scan engine

Detection

Engine version

Emsisoft Anti-Malware

Gen:Variant.Strictor.46875

8.14.03.01.11

Trend Micro House Call

HV_ZYX_BL132900.TOMC

7.2.60

File size:

724.9 KB (742,264 bytes)

Product version:

3.1.3.26837

Original file name:

uTorrent.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\utorrent\utorrent.exe

Digital Signature

Signed by:

BitTorrent Inc

Authority:

VeriSign, Inc.

Valid from:

6/21/2010 3:00:00 AM

Valid to:

7/27/2013 2:59:59 AM

Subject:

CN=BitTorrent Inc, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=BitTorrent Inc, L=San Francisco, S=California, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

36BC30562A650AFAA5AD101ECD643AB4

File PE Metadata

Compilation timestamp:

3/9/2012 12:37:52 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

12288:MtgiQfcjocRacTNX08+p89Rpjd0KwsOI0KYBkEpXArZb47ZDO8oSk8:MtgiQf23458h9vjpwg0KYJpXI8w8

Entry address:

0x506A90

Entry point:

60, BE, 00, F0, 86, 00, 8D, BE, 00, 20, B9, FF, 57, 89, E5, 8D, 9C, 24, 80, F1, FC, FF, 31, C0, 50, 39, DC, 75, FB, 46, 46, 53, 68, 36, 43, 50, 00, 57, 83, C3, 04, 53, 68, 8D, 7A, 09, 00, 56, 83, C3, 04, 53, 50, C7, 03, 07, 00, 04, 00, 90, 90, 90, 90, 90, 55, 57, 56, 53, 83, EC, 7C, 8B, 94, 24, 90, 00, 00, 00, C7, 44, 24, 74, 00, 00, 00, 00, C6, 44, 24, 73, 00, 8B, AC, 24, 9C, 00, 00, 00, 8D, 42, 04, 89, 44, 24, 78, B8, 01, 00, 00, 00, 0F, B6, 4A, 02, 89, C3, D3, E3, 89, D9, 49, 89, 4C, 24, 6C, 0F, B6, 4A... 
[+]

Code size:

612 KB (626,688 bytes)

Startup File (User Run)

Registry location:

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:

uTorrent

Command:

"C:\Program Files\utorrent\utorrent.exe" \minimized

The file uTorrent.exe has been discovered within the following programs.

µTorrent by BitTorrent Inc.

µTorrent is a is a free, ad-supported, lighter-weight BitTorrent client designed to consume less resources then the full BitTorrent version.

www.utorrent.com

12% remove it

The file uTorrent.exe has been seen being distributed by the following 31 URLs.

https://dw.uptodown.com/dwn/XVemdfnLW-NJu1cLxkQA4zFURpYDlbJlPRHMlP-c8sXaMwDmXpHI9VcGLwRxwqFPBBEuCaemidaZufE4PIA3M4CY-mxUCNEQaBu_Kpl497GxC5or5PQxXrlM5wVW8m-6/GE0TARqQUSi7mIjmzIeTWErZfjHQSF6b-TnIjHSHq7QL4VcZaBUerltDAK48hNlW2-mdFzj5BHVEaHWfLs7Xnap58A00M3kOeMQxijYm_MLL55K7Pv5uLpTTPgrDQbMd/H2TtBKP5nRdDW3qK3Aztro45XkCHmJZoBZ4Cjtv3m13UqOHNxWzdWM7sTv8laKs7S9rHODie8_UDdQbFNS5g8p0AoppMViGOQrPRWCppRPyeYTZz_sKR8_L17FlhA9OR/.../

https://dw.uptodown.com/dwn/IY5fhb8OCCQPsAmWMxLpjojSpBZYfJ-oLSTrsEjHJnek5OngsEKVlHRAmfG6C3Dud9CmIAom9emTg--3wjPWvyot_SzAJaiWUtRCgouPLQYs8TaZdSllwaNWf3FOD2dZ/5v-9u0Bd5G_W-9LcWKyXGvs-E0Yq_UxnK1-a_DLcK_tlDYG4hsi8E8F1JGkUnanLDBOu7z_DtDEwDSmZ_lwDGL1Spy9LenMEE1sTopPTX_lLncOiLUHp2dY_9mVoxQ3p/KG_qtB-Ro-p-Eq6sVWVC1dxrv90CVB5PFomwhbSEU0XK9Ppv9u_0cWQmQH4CCgJLijYC9W03ikdoHxBEaRCdapTCvtZsE52b7EGMReuOcIvWuiMo4gRsnIUrNUs60pA2/.../

http://download2.besplatnyeprogrammy.ru/software/.../uTorrent_Rus_Setup.exe

https://dw.uptodown.com/dwn/8miVaP61MdPh_yRcUJ-lLLr4ZoiDWx17TvhwVofG5CCeAmBQKsNM9irT5QiM8s5_u46jywh78vzFYLy0zFDI5FC-JW8hQ71M4VzyxUtps8G5cWtqKYmMez2U727ZDfdJ/HSfzupZoNjTLRrRDtpiZpQE0QuJH5DzIwwRqLeqgCoANs4W4AyRb7YNEDyfbiCyQsaRiTekJuJwjWa33ROiQQnwZm1i11TywcrActcleMRfdCsnIeNfCKpBZgqWvjPqn/16jGEf6xmopelX6zrlNrkXC6JKFwoOYfVANuie1NPBgWRnxZLqpWD9gqAIwC6MBQnDdOw2mcEz-3H9CkVUnW3CGWZ62URp9MvJX8qHdpP1DDKTNur08cDS-JPjQbYbwZ/.../

https://dw.uptodown.com/dwn/4i1SWlh6J_1HTFGU4axgTmK6B_PIr_JbmjVTgfVDORrsXBFR9npWauV0eL3TxBdVdqTYJp5Qovb2-w2hE0iFMEX5HmwgRED0Un2OxKD4oXmGef-RdQD4LV3qe2XuYyWf/fNthpFcmv_BWwAWS88daKNurJCcD2f9Tw-Ei5ap73DcfbSXHBxZynvM_tsNRuu3o4CXfg7CFl1x_SSD2_eaZhv38ipyFBMz33bHnJ78CHGr8SH2DEwqaI0YQDGSG5Z47/mHtMZ4ph139vRNKBHS5lwxwaJQV7mSseaL2_pwTTaPL1syBPqN_MwxwoJdiTjDy9hGtQ7knGEFrIWwfTnj9z-evp8E-LKb7JOP9LJGxmNWsr0Ftim4xxgPmfOKKjDq4Z/.../

http://freeforum.tistory.com/.../cfile9.uf@20077D3A4F6153EA26CC07.exe

http://download.ap.bittorrent.com/track/stable/endpoint/utorrent/.../windows

http://utorrent.ar.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fl6KLoqWhk5Q=

http://dw.uptodown.com/dwn/zSQCjnmdqUe9Amj5YY885EKxVUg0vcUZyyTty1ZeVaUvfOGxrH5Tik5VGb5Ox9fdBkGpXrzhaN9kC440aP_burBaI8PeE9iMTraD2aNembgaBwPkL0mUQY5wjeHn_kD2/E3fxWYxPUiasXtu1HbJnf35i0awnNKC-I3CCPu8qS7CaZ_kJb79C33Mmh0mcgbBvX7FItUmQvzPaDNd_2Lg9WiHeSwkpWdQtzYsHkCsSDEGhdwmMNCnck7jNETVVhAmF/.../

https://dw.uptodown.com/dwn/TDrzNSXH0e68_O91vfqnXPZ7ggIit5vLh1FV2bFuhBsmn0tUKI6c7-pU7RdQOZlv00v2hViwEFH1gievYMNK0QBnzYpFIiyaALTetDzQV7C9ZmU0p4kSev3RhFHsRsl7/eMiFykHcNVMjRKRiu7LyyUnrDakD_lLz_B5BkHtyZsYnweM_nYw-Ym61p7EjQlV0xUk3AGl2h_iGnHooWwBm1GsEVVGsZCDfXKc1ZiXg6Gd4CHJuRXpLC0iGLL0ZIfrM/NE0jIqZ3xy5UEUBXJ0e2WHPOkwx2fXBEo_fWdCqHTJp1SDb_Usx-u12Tuvd9ph8u9dstzBKH9RFqYd8AuPXzD_-HuX4WLBK-42gb5dZ5CUO9d7r0Ajm_jdG0I2HetGTY/.../

https://dw.uptodown.com/dwn/9Ny-boBw5j0zgvfYNPfoZYGKTNU9_R51qXwqncyIhJ1eEBFFAmUt7A7LoQmdP0VSOfiU2bGHLGfB2APIVQtJjbxgZn5xiyyGLT4J6zmMUnf-dP0CsB4mjdbPzwQOCR0v/GVzQRHk1XLI1E3MDpJxrJc99DknzHGWfVLn_8ffRv5OStE_q5RU14KDrVm10QmWRKm3Xxr0keytFBz4sejLHzNoyvBZDeE88lG3VsAjzhliZcrmNsSC5SDlQSKD8kyb-/lCa4lvsByHOMvGjGIj1OVj5SE4LYyvFkVWAsjQSSDH-ftHPlGiiFgWNyN2RPn4XFLe39_7MzS448xOVhVlSIVM86R3zFk_7exffIViABj03zkhuhLH5c12x-C35PS4Zu/.../

https://dw.uptodown.com/dwn/YMel54RahgxqZ8QsWP-zPxpznV_UaGFwrWs8Xcfw6MpUj7vsTAPXNVYSqrP6YBsMTdylZuszhvIB4fx89yKX5pVvOjbg0sPZJ2cGs-NIZIB2O800eVTztMSWh8n-35vG/xRX0vyJJQ_wdmAgeRUk923i3qeHNBIio2hSP1FRa4dGHTdRaoiNrkqxBxNLpq0B75CjVPsEmx6roYOyBqcqisdwl42bCRdu2k5hh9Lg7PZAV1mf_n6Pie7myFFIaiRr2/DmJwOtPMNzpS8xPvWGabfiZ4sWCgBI6e9GO_yl1I7F9nKXOkIsCTRMBmcc4k0ZKyL1UGTa8wgnJyQPvnDoWb_x9IAbpK6msI4JcDIXlDz6hZkcpeO3Qc5WElvhqxpO-6/.../

http://www.afterdawn.com/software/.../download.cfm?version_id=45807&software_id=771&mirror_id=0&installer=0&perion=0&air_installer=0

http://dw.uptodown.com/dwn/VPSmDXyAup8kCpncGQ99VynNTgwuGj4LajKxkFlD5uSyrPU8I3mTR58vhME1_jFGmK6cbm9iYndirELM6PLuENDdltxsKgnthhS-zu6NO7t5y_1OM1voecVcF5hxrRH0/pV5bLPEnKzgOQHkmj0H9mWvYit6E9PLHvFvU2xoVNQldEnsdm3WVSrKM-RKVGt8_jKpFpWCveAFZLj_Msvk-0OZtHjhXMcSAmXVWKXiCr8JgSn9ipvUKbQy3CV9rjAaC/NqqHYhlvorrs30v_eyvXZ50m7BZJb1_T4tJLRqLUcmMvI22I-pADXNFtLUEaA7l2BWpGaOvtr7cH9Q1ITkbJq-CFvXsI_M8xVhSBPkwUimMS6bjt-uaHmycIt8j6OXPR/.../

http://dw.uptodown.com/dwn/95nA5Hz7R8BzHMd4ao6BxY2FMbwB7XmBKmTAdEJujkyfVxkLDf11oSCF6brwXIvCctWY3OaOCdSxfDPfecEZibbEbFRnVMqbKDA1r8aXGG91GSkjn3MiOXYXNnbT5Rth/XS0HqJ7ok31vZidDbgxlGyhlRwsHcLC1CTeMdJvI8fBqopidt4Fq-iJAvIMx9fUmdS01MDQ58YSPa8kuNVivGlqQczk-dw4ox6cnxOhKe2qlZ-65aktuPbJmJ8yena13/.../

http://dw.uptodown.com/dwn/KKwDKK_VRLq6zEx2ipaGH34_mhJWIKyYOm_iYtlo9fLzOi_Fp66rGZb0IL3SwfWcVzaN0HgJ24EoVfLdv87uUiEEvtTbNVdy5igejkY3uMlve41GasTVi07IDGsSnRK7/y5GQFr_70_xlp890khyLObvLzOhfNHxfq-ZYJNn-gOdr3pKpbXcPMBX1GaN9gg6uyePwQlBZldGfsaJdOR_WLLNganrOSjC9YycuPMSqFMCs_dG-GSG2Dg-kK81KASQc/.../

http://dw.uptodown.com/dwn/s5C2Yl6O3w-B7yJdOrxpnXOM06bAvXz3uK3ikfQ7o3TJ6gokCcgVINDulSR-hKzyEO9Bb3tmWFIGtnX8y4OvloIe4k-D724djxbLlwHgykn0DH9xD_9aPX2GyWBTLmhE/qeJrUKw948AsxgOOeuVatvaKNueUFzubqInhAyjxlnVpyoh0t7yn4csIXtxlBz6ij9c_ehCVovH7gX2YyXD0X18KWHZiyXk0zZh7lwVsePnYTs73_T5dLUJ9lQO0LeyA/KM9kjAvKLEBUxQDCg9xFoQuwtBxLTXXou82_U-yE2cODZ1nvIpn5TvacNNUCZS0EQi70-EOnmQIoBH5wRm75MsYTjwcUAs07EP-hh32NpL7Zp-nPXSpfc21hElon1n8t/.../

http://utorrent.hu/.../utorrent_313.exe

http://home.multilive.net:8080/Multi Wares/.../uTorrent Stable 3.1.3 build 26837 [multilive.net].exe

http://go.multilive.net/.../utorrent [Multilive.Net].exe

http://web.archive.org/web/20120329085626/http://download.utorrent.com/.../uTorrent.exe

http://dw.it.uptodown.com/dl/1430501963/.../utorrent-3-1-3-es-en-br-fr-de-it-cn-jp-ar-ru-win.exe

http://download.oldapps.com/.../uTorrent_3.1.3_build_26837.exe

http://www.oldapps.com/utorrent.php?app=CE84397598053D7A0F74D95D11F2ACCD

http://download.utorrent.com/.../uTorrent.exe

http://70.85.12.34/~adultmov/dc/.../install.exe

http://download.utorrent.com/.../utorrent.exe

https://polishtracker.net/.../utorrent313.exe

http://download.utorrent.com/.../utorrent.exe

Latest 30 of 31 download URLs

Scan uTorrent.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.