» 00000000
Overview
Analysis
File Details

00000000

Get your downloads

Maxiget Limited

This is a bundle installer which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed with minimal consent. The file 00000000 by Maxiget Limited has been detected as adware by 36 anti-malware scanners. The program is a setup application that uses the New IT Desktop Setup installer.

File name:

00000000

Publisher:

Company #1 (signed by Maxiget Limited)

Product:

Get your downloads

Version:

3, 1, 16, 0

MD5:

da37653856e37b0bb61575cc58370020

SHA-1:

48c5a41e9a0b46287b9aa2b6f8849284914b4cd5

SHA-256:

9c8f6e6255bca3695b5e0e0cc686a3ffd4bb3dea17424e299cda73f9317198ed

Scanner detections:

36 / 68

Status:

Adware

Explanation:

This is a modified installer version of the software and bundles additional offers including adware.

Description:

This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:

4/19/2024 6:31:07 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Adware.Generic.993281

355

AegisLab AV Signature

Troj.Dropper.W32.Agent

2.1.4+

Agnitum Outpost

PUA.Downloader

7.1.1

AhnLab V3 Security

PUP/Win32.Downloader

2014.03.06

Avira AntiVirus

Adware/Delta.H.17

7.11.177.168

avast!

Win32:FourShared-AI [PUP]

2014.9-160215

AVG

Adware BundleApp

2017.0.2833

Baidu Antivirus

Adware.Win32.Maxiget

4.0.3.16215

Bitdefender

Adware.Generic.957134

1.0.20.230

Bkav FE

W32.Clod84a.Trojan

1.3.0.4562

Clam AntiVirus

Win.Trojan.4shared-19

0.98/21411

Comodo Security

Application.Win32.Graftor.KLK

17889

Dr.Web

Adware.Downware.1751

9.0.1.046

Emsisoft Anti-Malware

Adware.Generic.993281

8.16.02.15.06

ESET NOD32

Win32/4Shared (variant)

10.9170

F-Prot

W32/A-35b3d9ee

v6.4.7.1.166

F-Secure

Adware.Generic.993281

11.2016-15-02_2

G Data

Win32.Trojan.TorrentNZ

16.2.24

IKARUS anti.virus

AdWare.Delta

t3scan.1.7.8.0

K7 AntiVirus

Unwanted-Program

13.183.13642

Malwarebytes

PUP.Optional.4Shared

v2016.02.15.06

McAfee

Artemis!BB39D90B74D5

5600.6489

MicroWorld eScan

Adware.Generic.957134

17.0.0.138

NANO AntiVirus

Trojan.Win32.GetFaster.ctshtu

0.28.0.58394

Norman

Adware.Generic.993281

11.20160215

nProtect

Trojan/W32.Agent.139784.G

14.10.10.01

Qihoo 360 Security

Win32/Virus.Adware.768

1.0.0.1015

Quick Heal

Trojan.Badur.MUE.A5

2.16.14.00

Reason Heuristics

PUP.New IT Limited.Maxiget.Bundler (M)

16.2.15.6

Rising Antivirus

PE:PUF.4Shared!1.9C25

23.00.65.16213

Sophos

4Share Downloader

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Downloader

9322

Trend Micro House Call

TROJ_GEN.F47V0215

7.2.46

Vba32 AntiVirus

Backdoor.Androm

3.12.26.3

VIPRE Antivirus

Adware.Win32.4Shared.a

27102

Zillya! Antivirus

Downloader.GetFaster.Win32.39

2.0.0.1927

File size:

402.1 KB (411,720 bytes)

Product version:

3, 1, 16, 0

Trademarks:

TM(c)

Bundler/Installer:

New IT Desktop Setup

Language:

Language Neutral

Common path:

C:\users\{user}\appdata\local\google\chrome\user data\default\file system\001\t\00\00000000

Digital Signature

Signed by:

Maxiget Limited

Authority:

GoDaddy.com, Inc.

Valid from:

8/15/2013 3:41:32 AM

Valid to:

8/15/2016 3:41:32 AM

Subject:

CN=Maxiget Limited, O=Maxiget Limited, L=Limassol, S=Cyprus, C=CY

Issuer:

SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:

045BA815265145

File PE Metadata

Compilation timestamp:

11/29/2013 2:36:23 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

12288:o/wcbNQaGBLqugv6yq+m876qJcauQuQnKi:gugSyqR87bcaur4

Entry address:

0x29F3C

Entry point:

E8, 5B, A3, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 14, A1, 78, ED, 44, 00, 33, C5, 89, 45, FC, 53, 56, 33, DB, 57, 8B, F1, 39, 1D, EC, 06, 45, 00, 75, 38, 53, 53, 33, FF, 47, 57, 68, 50, 54, 44, 00, 68, 00, 01, 00, 00, 53, FF, 15, 78, F1, 43, 00, 85, C0, 74, 08, 89, 3D, EC, 06, 45, 00, EB, 15, FF, 15, 88, F0, 43, 00, 83, F8, 78, 75, 0A, C7, 05, EC, 06, 45, 00, 02, 00, 00, 00, 39, 5D, 14, 7E, 22, 8B, 4D, 14, 8B, 45, 10, 49, 38, 18, 74, 08, 40, 3B, CB, 75, F6, 83, C9, FF, 8B, 45, 14, 2B, C1... 
[+]

Code size:

248 KB (253,952 bytes)

Remove 00000000 - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.