» videocuttersetup.exe
Overview
Analysis
File Details
Downloads (2)

videocuttersetup.exe

Video Cutter

prvsoft.com

The application videocuttersetup.exe, “Video Cutter Setup ” has been detected as a potentially unwanted program by 10 anti-malware scanners. This is a self-extracting archive and installer, however the file is not signed with an authenticode signature from a trusted source. Part of RelevantKnowledge, a program typically installed via a software bundle (with the user's knowledge should they read the EULA) and will run in the background collecting and monitoring information about the user's behavior in order to build an extensive profile.

File name:

Publisher:

prvsoft.com

Product:

Video Cutter

Description:

Video Cutter Setup

Version:

1.1

MD5:

bde947d97e5158017863fd093b38eaee

SHA-1:

2b383186fa24d3fa643b940fc238fcd67e018c54

SHA-256:

55fc03c336ada20a642d62c07b10a47bdeb674ca63aa88804a8bc16a4bc5e53a

Scanner detections:

10 / 68

Status:

Potentially unwanted

Analysis date:

12/28/2024 8:33:45 AM UTC (today)

Scan engine

Detection

Engine version

Avira AntiVirus

ADSPY/NaviPromo.J

7.11.183.206

avast!

Win32:Relevant-S [PUP]

2014.9-141206

AVG

RelevantKnowledge

2015.0.3268

Baidu Antivirus

Adware.Win32.RKToolbar

4.0.3.14126

Fortinet FortiGate

Adware/Relevant

12/6/2014

K7 AntiVirus

Riskware

13.185.13943

Kaspersky

not-a-virus:WebToolbar.Win32.RK

14.0.0.2837

Qihoo 360 Security

Win32/Virus.WebToolbar.9c5

1.0.0.1015

Quick Heal

WebToolbar.RK.g8 (Not a Virus)

12.14.14.00

Trend Micro House Call

TROJ_GEN.R02KH07G714

7.2.340

File size:

4.8 MB (5,062,799 bytes)

Product version:

1.1

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\videocuttersetup.exe

File PE Metadata

Compilation timestamp:

1/30/2013 7:51:56 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

98304:zlO/bbJ7zk/hzujVey9LgMaSCn0+8AzN+R7czh/4aQS9zqZ5daQ87kBL:pO/XJ7zkJEVLAHUAMRIlAa9+BrQkh

Entry address:

0x113BC

Entry point:

55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 2C, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 16, D8, FF, FF, E8, 65, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 2B, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 50, 86... 
[+]

Entropy:

7.9935

Developed / compiled with:

Microsoft Visual C++

Code size:

63.5 KB (65,024 bytes)

The file videocuttersetup.exe has been seen being distributed by the following 2 URLs.

http://www.programosy.pl/.../pobierz,video-cutter,2.html

http://www.prvsoft.com/.../VideoCutterSetup.exe

Remove videocuttersetup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.