home

ytd.exe

YTD

Pepak

The executable ytd.exe has been detected as malware by 1 anti-virus scanner.
Publisher:
Pepak  (signed and verified)

Product:
YTD

Version:
1.59.0.1413

MD5:
c074180e94307fd39d497b6efb72f248

SHA-1:
f844dd32a4f62a26f7ea8ebfd5e55ac44696efac

SHA-256:
bc5fff0aa381a111d0f574c18c6d397c41ddeba18e237c01fe37fb46a1cbd84e

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
12/26/2024 8:51:02 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.2.19.18

File size:
1.3 MB (1,345,960 bytes)

Product version:
1.59.0.1413

Copyright:
(c) 2010-16 Pepak

Original file name:
ytd.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\ytd.exe

Digital Signature
Signed by:
Pepak

Authority:
Pepak (root CA)

Valid from:
12/31/2016 10:37:41 AM

Valid to:
12/31/2017 10:37:40 AM

Subject:
CN=Pepak, E=http://www.pepak.net

Issuer:
CN=Pepak (root CA), E=http://www.pepak.net

Serial number:
C639D5EA462147BD4E29AEE4D2A334CE

File PE Metadata
Compilation timestamp:
2/18/2017 7:29:22 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.25

Entry address:
0x10A240

Entry point:
55, 8B, EC, 83, C4, F0, A1, 20, E4, 51, 00, C6, 00, 01, B8, 98, 66, 50, 00, E8, 5C, F1, EF, FF, E8, F7, B4, F8, FF, E8, DE, B2, EF, FF, 8B, C0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1 MB (1,083,392 bytes)

Remove ytd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.