home

ytd.exe

YTD

Pepak

The executable ytd.exe has been detected as malware by 1 anti-virus scanner.
Publisher:
Pepak  (signed and verified)

Product:
YTD

Version:
1.36.0.1040

MD5:
e42152ac22a9547b01394ba6f89b0f22

SHA-1:
afba5734c4490b2412c3341d3f487c1e0a82f2d9

SHA-256:
f87c287a6644e401e88ffddb10460290801a573fb0e907fb201f96f91b77aef3

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
12/26/2024 10:06:47 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
16.7.31.19

File size:
1.2 MB (1,294,264 bytes)

Product version:
1.36.0.1040

Copyright:
(c) 2009-11 Pepak

Original file name:
ytd.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\ytd\ytd.exe

Digital Signature
Signed by:
Pepak

Authority:
Pepak (root CA)

Valid from:
1/20/2013 4:44:48 PM

Valid to:
1/20/2014 4:44:47 PM

Subject:
CN=Pepak, E=http://www.pepak.net

Issuer:
CN=Pepak (root CA), E=http://www.pepak.net

Serial number:
42EE5DD3C86218984A3D355CC0EE3D15

File PE Metadata
Compilation timestamp:
1/14/2014 7:59:46 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.25

CTPH (ssdeep):
24576:03I1xvOzIYhFuLYu7A/JVBkM6bPj3cQvrtyq:sNFuLYu/NPjrtt

Entry address:
0x1033D8

Entry point:
55, 8B, EC, 83, C4, F0, A1, 1C, 43, 51, 00, C6, 00, 01, B8, 70, F7, 4F, 00, E8, E8, 5D, F0, FF, E8, 4F, 51, F7, FF, E8, 72, 21, F0, FF, 8B, C0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 02, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 32, 13, 8B, C0, 00, 8D, 40, 00, 00, 8D, 40, 00, 00, 8D, 40, 00, 01, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 50, 14, 40, 00, AC, 14, 40, 00, D8, 14, 40, 00, 00, 15, 40, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1 MB (1,055,232 bytes)

Remove ytd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.