home

videodownloaderultimate_installer_mini.exe

Video Downloader Ultimate

Link64 GmbH

The executable videodownloaderultimate_installer_mini.exe, “Video Downloader Ultimate - Win App [VideoDownloaderUltimate.exe]” has been detected as malware by 5 anti-virus scanners. The file has been seen being downloaded from videodownloaderultimate.com.
Publisher:
Link64 GmbH

Product:
Video Downloader Ultimate

Description:
Video Downloader Ultimate - Win App [VideoDownloaderUltimate.exe]

Version:
1.0.1.84

MD5:
d214b9ab65364f4acb0929af1ee26cc3

SHA-1:
cf786979059b91c2d92e15974a5910a8b2ed36ef

SHA-256:
552d5920de99efb3eb3a2cda9faa36c6f02c6555c603ead879a398ff54a4fb13

Scanner detections:
5 / 68

Status:
Malware

Analysis date:
11/27/2024 2:51:07 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:SaliCode
160518-2

ESET NOD32
Win32/Sality.NBA virus
8.0.319.0

Kaspersky
Virus.Win32.Sality
15.0.0.562

Microsoft Security Essentials
Threat.Undefined
1.225.1578.0

VIPRE Antivirus
Threat.4758034
50536

File size:
377.8 KB (386,888 bytes)

Product version:
1.0.1.84 - 1001

Copyright:
(c) 2016 Link64 GmbH. All rights reserved.

Original file name:
VideoDownloaderUltimate_Installer.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Documents and Settings\{user}\My documents\downloads\videodownloaderultimate_installer_mini.exe

File PE Metadata
Compilation timestamp:
6/7/2016 5:42:53 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:s5ebipwhF6//nJv/rCxWTBnAmECy8LFxvlo+DZkI:sAmpTfcWTHQ8J9loUt

Entry address:
0x685C

Entry point:
8B, F1, EB, 06, 8D, 15, B4, F7, AC, 43, 4F, 0F, AF, D1, 4E, 50, 8B, EB, 5D, 0F, CF, 85, C2, 33, CD, 4A, 13, CA, 0F, B6, C9, 8B, D9, E8, 24, 00, 00, 00, B1, E8, 8B, FA, 0F, CB, 8D, 0D, 37, 1F, F9, FF, 8D, 1D, E7, FC, 84, 27, 81, F1, 1D, BE, 05, 00, 85, D3, 03, D1, F6, DB, 81, C2, EA, 27, 04, 00, F7, DB, 8A, DE, EB, 02, 29, C3, BD, 03, FB, FC, FF, 81, F5, E3, 06, 03, 00, FE, CB, 55, 5A, 02, DC, 81, C2, 13, 03, 00, 00, 8D, 3A, 69, EA, E3, 54, 7B, CF, 81, C7, A5, 0E, 00, 00, 0A, DC, 8D, 15, 92, A9, B0, 6C, 81...
 
[+]

Entropy:
6.7373

Code size:
172 KB (176,128 bytes)

The file videodownloaderultimate_installer_mini.exe has been seen being distributed by the following URL.

https://videodownloaderultimate.com/.../VideoDownloaderUltimate_Installer_mini.exe

Remove videodownloaderultimate_installer_mini.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.