The results on virustotal.com are indeed strongly suggesting that everything's alright with the file and the warning of Windows Defender was some false-positive.
Meanwhile there have been two versions of the file around. The SHA256 hashes are b496bd76e7ba2dbb04a11f960aeeb60fe06de949ff062fe6a8df92f34f71298b and 0f3f29a30b6235cb18aa8bfa8368480a7a772270678010874258f3d0cee8cf8d respectively, both have already been checked on virustotal.com (b496bd7...f71298b
) and are, much like some other files, tagged as "Modified <20h ago" on sourceforge.net/projects/smtube/files/SMTube/16.3.0
Am I right by assuming the difference is that the new versions are now signed by the usual Windows certificate chain? Btw. the new version isn't considered infected any longer by Windows Defender using today's malware definitions.