ytd.exe

YTD

Pepak

The application ytd.exe by Pepak has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Pepak  (signed and verified)

Product:
YTD

Version:
1.46.0.1140

MD5:
4c2535a994b37ff7d0ba5898bba775cc

SHA-1:
4a0e9d0921f452189e74ac9e973fc534d7463664

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/26/2024 8:40:07 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Pepak (M)
16.7.7.18

File size:
1.3 MB (1,314,232 bytes)

Product version:
1.46.0.1140

Copyright:
(c) 2009-11 Pepak

Original file name:
ytd.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\ytd\ytd.exe

Digital Signature
Signed by:

Authority:
Pepak (root CA)

Valid from:
3/15/2015 11:47:18 AM

Valid to:
3/15/2016 11:47:17 AM

Subject:
CN=Pepak, E=http://www.pepak.net

Issuer:
CN=Pepak (root CA), E=http://www.pepak.net

Serial number:
3CF3EFFEF1E5EDA545564A0532C0A9B8

File PE Metadata
Compilation timestamp:
3/15/2015 10:59:51 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.25

CTPH (ssdeep):
24576:+sHGZL/cMBn4XZUCKiqgY7pKGkHN/0DX0wrtxY:WGKCKiP/Anrta

Entry address:
0x107350

Entry point:
55, 8B, EC, 83, C4, F0, A1, 30, 83, 51, 00, C6, 00, 01, B8, B0, 39, 50, 00, E8, 1C, 1F, F0, FF, E8, BB, 04, F8, FF, E8, F6, E1, EF, FF, 8B, C0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1 MB (1,072,128 bytes)

Remove ytd.exe - Powered by Reason Core Security