» فيلم رومانسي جدا 2013 videoweed get high on.exe
Overview
Analysis
File Details
Downloads (1)

فيلم رومانسي جدا 2013 videoweed get high on.exe

Bogdan Didenko

The is the installer for the WebPick InstalleRex download manager which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed without consent. The application فيلم رومانسي جدا 2013 videoweed get high on.exe by Bogdan Didenko has been detected as adware by 26 anti-malware scanners. According to AVG, this software downloads additional adware offers during setup. The file has been seen being downloaded from appllicatiionew.com.

File name:

Publisher:

Bogdan Didenko (signed and verified)

MD5:

3f0d50d8ee466330e34bacf3138f4784

SHA-1:

5f7a9bf18f220ebe630cfeb4abf6115cc14da8f0

SHA-256:

4e17f337d57249c94f1b90c0f9f5cc6da89190a2c16de2f0bf7f879fe04d710f

Scanner detections:

26 / 68

Status:

Adware

Explanation:

Uses the InstalleRex from WebPick Internet Holdings to install bundled add-ons including toolbars and other web browser extensions.

Analysis date:

4/26/2024 1:34:44 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Adware.Bprotector.I

980

Agnitum Outpost

Trojan.Badur

7.1.1

AhnLab V3 Security

PUP/Win32.Adware

14.05.30

Avira AntiVirus

TR/Dldr.JQQX

7.11.152.38

avast!

Win32:Agent-ATOK [Trj]

140529-0

AVG

Trojan horse Downloader.Agent2.BUDX

2014.0.3955

Bitdefender

Adware.Bprotector.I

1.0.20.750

Comodo Security

TrojWare.Win32.TrojanDownloader.Agent.AOB

18377

Dr.Web

Trojan.Siggen4.41297

9.0.1.05190

Emsisoft Anti-Malware

Adware.Bprotector

8.14.05.30.05

ESET NOD32

Win32/TrojanDownloader.Agent.AOB trojan

7.0.302.0

Fortinet FortiGate

W32/Genome.ALF!tr.dldr

5/30/2014

F-Secure

Adware.Bprotector.I

11.2014-30-05_6

G Data

Adware.Bprotector

14.5.24

Kaspersky

HEUR:Trojan.Win32.Generic

14.0.0.3786

Malwarebytes

PUP.Optional.InstalleRex

v2014.05.30.05

McAfee

Downloader-FABX!3F0D50D8EE46

5600.7114

MicroWorld eScan

Adware.Bprotector.I

15.0.0.450

NANO AntiVirus

Trojan.Win32.Genome.cxhrhg

0.28.0.59921

Norman

Genome.GR

11.20140530

Panda Antivirus

Generic Malware

14.05.30.05

Reason Heuristics

PUP.BogdanDidenko.n

14.5.30.16

Sophos

MultiPlug

4.98

Vba32 AntiVirus

TrojanDownloader.Genome

3.12.26.0

VIPRE Antivirus

Threat.4753027

29732

Zillya! Antivirus

Downloader.Genome.Win32.50442

2.0.0.1806

File size:

448.9 KB (459,664 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\???? ??????? ??? 2013 videoweed get high on.exe

Digital Signature

Signed by:

Bogdan Didenko

Authority:

COMODO CA Limited

Valid from:

9/12/2013 1:00:00 AM

Valid to:

9/13/2014 12:59:59 AM

Subject:

CN=Bogdan Didenko, O=Bogdan Didenko, STREET=Revutskogo 44, L=Kiev, S=Kiev, PostalCode=02140, C=UA

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00E6A93AF5D57B453D0C73ABE3E41C7DCC

File PE Metadata

Compilation timestamp:

5/8/2014 2:21:11 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

6144:KUA7AlvowEueySHm4fbb++aM3yTVn3LRvO+S6f7bUtuhEP4IDja7:JA7+EuwmyP++Fg3hO+S6f7b/EP4Sja7

Entry address:

0x1CB88

Entry point:

E8, 0E, 80, 00, 00, E9, 7F, FE, FF, FF, 3B, 0D, 9C, 15, 44, 00, 75, 02, F3, C3, E9, B9, 81, 00, 00, 55, 8B, EC, 8B, 45, 0C, 83, EC, 20, 56, 57, 6A, 08, 59, BE, AC, 67, 43, 00, 8D, 7D, E0, F3, A5, 8B, 4D, 08, 5F, 5E, 85, C0, 74, 0D, F6, 00, 10, 74, 08, 8B, 01, 8B, 40, FC, 8B, 40, 18, 89, 4D, F8, 89, 45, FC, 85, C0, 74, 0C, F6, 00, 08, 74, 07, C7, 45, F4, 00, 40, 99, 01, 8D, 45, F4, 50, FF, 75, F0, FF, 75, E4, FF, 75, E0, FF, 15, C4, 50, 43, 00, C9, C2, 08, 00, 8B, 4D, F4, 64, 89, 0D, 00, 00, 00, 00, 59, 5F... 
[+]

Entropy:

6.6977

Code size:

205.5 KB (210,432 bytes)

The file فيلم رومانسي جدا 2013 videoweed get high on.exe has been seen being distributed by the following URL.

http://appllicatiionew.com/.../?&q=???? ??????? ??? 2013 VideoWeed Get high on&product_name=???? ??????? ??? 2013 VideoWeed Get high on&installer_file_name=???? ??????? ??? 2013 VideoWeed Get high on&q=???? ??????? ??? 2013 VideoWeed Get high on&external_id=1399624196090191043&self_redirect=1

Remove فيلم رومانسي جدا 2013 videoweed get high on.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.