home

ytd.exe

YTD

Pepak

The application ytd.exe by Pepak has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Pepak  (signed and verified)

Product:
YTD

Version:
1.48.0.1146

MD5:
71ef214598c9ea26093caececb95ea37

SHA-1:
d5c9c7a672166e4f2b87eb4a9ea125ddcc78b3fa

SHA-256:
6ba41cd6f86352086553ea7b99bbc180f1d094201fd5898d608473732d2478c9

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/26/2024 8:14:04 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Pepak (M)
16.2.22.12

File size:
1.2 MB (1,303,480 bytes)

Product version:
1.48.0.1146

Copyright:
(c) 2009-11 Pepak

Original file name:
ytd.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:
Pepak

Authority:
Pepak (root CA)

Valid from:
3/15/2015 11:47:18 AM

Valid to:
3/15/2016 11:47:17 AM

Subject:
CN=Pepak, E=http://www.pepak.net

Issuer:
CN=Pepak (root CA), E=http://www.pepak.net

Serial number:
3CF3EFFEF1E5EDA545564A0532C0A9B8

File PE Metadata
Compilation timestamp:
5/24/2015 1:33:11 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.25

CTPH (ssdeep):
24576:kj3NC3dO5aHwrkPdrbtu4mPXfxSlQ5pv8JhcBnAbO6rtxf:NZPdrbtuLfxhpAOBqTrth

Entry address:
0x1042A4

Entry point:
55, 8B, EC, 83, C4, F0, A1, 38, 53, 51, 00, C6, 00, 01, B8, B4, 0F, 50, 00, E8, C8, 4F, F0, FF, E8, 7F, 3A, F8, FF, E8, A2, 12, F0, FF, 8B, C0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1 MB (1,061,376 bytes)

Remove ytd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.