home

yasu.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from mirror3.free-downloads.net and multiple other hosts.
MD5:
ba3af8c3af6cfdad00cb1ac2855e8f4a

SHA-1:
89dee1de636f22dee74a00e2ce9aa2d87a7d6ea9

SHA-256:
26aa37673bb31e96e2d910bbc39025ffafb63ab576c168040f7eaa99f0dfd3dd

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/27/2024 12:12:32 AM UTC  (today)

Scan engine
Detection
Engine version

Quick Heal
(Suspicious) - DNAScan
1.14.12.00

File size:
33 KB (33,792 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\daemon tools lite\yasu.exe

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
384:AXVLa9QPNpimufClJjEFVaBoS1iIoEGomslYo2FfgzcAm/0NPTzIpSWmLYajDeSc:4GQPqClNa4gVLqCYA16zYsYajDeopi

Entry address:
0x188F0

Entry point:
60, BE, 00, 30, 41, 00, 8D, BE, 00, E0, FE, FF, 57, EB, 0B, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89, C5, EB, 0B, 01, DB, 75, 07, 8B...
 
[+]

Packer / compiler:
UPX v0.89.6 - v1.02 / v1.05 -v1.24

Code size:
24 KB (24,576 bytes)

The file yasu.exe has been discovered within the following program.

DAEMON Tools Pro  by Disc Soft Ltd
DAEMON Tools (short for Disk And Execution MONitor tools) is a virtual drive and optical disc authoring program for Microsoft Windows. Mount *.mdx, *.mds/*.mdf, *.iso, *.b5t, *.b6t, *.bwt, *.ccd, *.cdi, *.bin/*.cue, *.ape/*.cue, *.flac/*.cue, *.nrg, *.
www.daemon-tools.cc
16% remove it
 
Powered by Should I Remove It?

The file yasu.exe has been seen being distributed by the following 4 URLs.

http://mirror3.free-downloads.net/.../YASU.exe

http://mirror1.free-downloads.net/.../YASU.exe

http://download12.mediafire.com/qdempskpq2lg/.../YASU.exe

http://205.196.120.157/agsq84dtj7zg/.../YASU.exe

Scan yasu.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.