uTorrent.exe

µTorrent

BitTorrent Inc

µTorrent is a free ad-supported lightweight BitTorrent client. This is a setup program which is used to install the application. It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘uTorrent’. This is installed with µTorrent. The file has been seen being downloaded from mochachoco.net and multiple other hosts.
Publisher:
BitTorrent, Inc.  (signed by BitTorrent Inc)

Product:
µTorrent

Version:
2.0.4.21515

MD5:
5e730e5248b4aaa9e4e159c411cba7c9

SHA-1:
fe0d09cc79a1dd603f15fade425abb5dba43d91d

SHA-256:
ea2bbb5ebae609a631af4d5a1b957c26f48775ae4f86ac1ff7e99c55204ed69d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 1:47:47 AM UTC  (today)

File size:
320.9 KB (328,568 bytes)

Product version:
2.0.4.21515

Copyright:
©2010 BitTorrent, Inc. All Rights Reserved.

Original file name:
uTorrent.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\utorrent\utorrent.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
6/21/2010 2:00:00 AM

Valid to:
7/27/2013 1:59:59 AM

Subject:
CN=BitTorrent Inc, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=BitTorrent Inc, L=San Francisco, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
36BC30562A650AFAA5AD101ECD643AB4

File PE Metadata
Compilation timestamp:
8/27/2010 2:19:05 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:B5A+iMnN7oECkZB/AQClQiaEbpwCUKNVHcs8bUobZjeALoSku:B6+iMneLkT/ATJefKNqoo9XLoSku

Entry address:
0xCC450

Entry point:
60, BE, 00, 20, 48, 00, 8D, BE, 00, F0, F7, FF, 57, 89, E5, 8D, 9C, 24, 80, C1, FF, FF, 31, C0, 50, 39, DC, 75, FB, 46, 46, 53, 68, D3, AD, 0C, 00, 57, 83, C3, 04, 53, 68, 4A, A4, 04, 00, 56, 83, C3, 04, 53, 50, C7, 03, 03, 00, 00, 00, 90, 90, 90, 90, 90, 55, 57, 56, 53, 83, EC, 7C, 8B, 94, 24, 90, 00, 00, 00, C7, 44, 24, 74, 00, 00, 00, 00, C6, 44, 24, 73, 00, 8B, AC, 24, 9C, 00, 00, 00, 8D, 42, 04, 89, 44, 24, 78, B8, 01, 00, 00, 00, 0F, B6, 4A, 02, 89, C3, D3, E3, 89, D9, 49, 89, 4C, 24, 6C, 0F, B6, 4A...
 
[+]

Entropy:
7.9470  (probably packed)

Code size:
304 KB (311,296 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
uTorrent

Command:
"C:\Program Files\utorrent\utorrent.exe"


The file uTorrent.exe has been discovered within the following programs.

µTorrent  by BitTorrent Inc.
µTorrent is a is a free, ad-supported, lighter-weight BitTorrent client designed to consume less resources then the full BitTorrent version.
www.utorrent.com
12% remove it
 
Powered by Should I Remove It?

The file uTorrent.exe has been seen being distributed by the following 16 URLs.

http://mochachoco.net/.../cfile1.uf@23551A3652822C6025A121.exe

http://cfile7.uf.tistory.com/.../232F213C57CA7E481D6B0E

https://doc-10-ak-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/ppu6u5tka1j715glll1fqqb0amf3a6ce/1482408000000/13479011969397109091/.../0B1GtvzXcTpbYYXp0b3M4LXlnMkE?e=download

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ4MTMwNjU1MTtzOjI6ImlkIjtpOjEyMTAwO3M6NDoiZmlsZSI7czozOToidXRvcnJlbnQtMi0wLTQtYnVpbGQtMjE1MTUtdXRvcnJlbnQuZXhlIjtzOjM6InVybCI7czo1OToiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmZyL3dpbmRvd3MvdXRvcnJlbnQtMi0wLTQtYnVpbGQtMjE1MTUiO3M6NDoicGFzcyI7czozMjoiMjAwOTc2MzI3MGFkN2M0Zjc5MjU3NGNlNDg5NDM2MDIiO30=

http://dl1.filesoul.com/.../uTorrent-2-0-4-Build-21515.exe

http://dl1.filesoul.com/.../uTorrent-2-0-4-Build-21515.exe

http://cfile1.uf.tistory.com/.../23551A3652822C6025A121

http://dl1.filesoul.com/.../uTorrent-2-0-4-Build-21515.exe

http://dl1.filesoul.com/.../uTorrent-2-0-4-Build-21515.exe

http://dl1.filesoul.com/.../uTorrent-2-0-4-Build-21515.exe

Scan uTorrent.exe - Powered by Reason Core Security