afgytdrp_740989_setup.exe

The application afgytdrp_740989_setup.exe has been detected as a potentially unwanted program by 22 anti-malware scanners. This is a self-extracting archive and installer, however the file is not signed with an authenticode signature from a trusted source.
MD5:
49c29a4b8de97d24467907c55a3d96ee

SHA-1:
b6cbe1f9b98cb21bbf258555bc94225a0c162042

SHA-256:
1b3c22d53aa0ca101181d4cdfa0857f2a591748c493b035ec41dc17b770a996f

Scanner detections:
22 / 68

Status:
Potentially unwanted

Analysis date:
4/21/2014 12:10:52 AM UTC  (three months ago)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Adware.Zusy.73969
1121

AhnLab V3 Security
Trojan/Win32.Agent
2013.12.27

Avira AntiVir
ADWARE/Adware.Gen7
7.11.122.88

AVG
Luhe.MSIL.F
2015.0.3599

Baidu Antivirus
Trojan.MSIL.Dropper
4.0.3.1419

Bitdefender
Gen:Variant.Adware.Zusy.73969
1.0.20.45

Emsisoft Anti-Malware
Gen:Variant.Adware.Zusy.73969
8.14.01.09.02

Fortinet FortiGate
Adware/Fam.NB
1/9/2014

F-Secure
Gen:Variant.Adware.Zusy.73969
11.2014-09-01_5

G Data
Gen:Variant.Adware.Zusy.73969
14.1.22

IKARUS anti.virus
Trojan-Dropper.MSIL
t3scan.2.2.29

Kaspersky
Trojan-Dropper.MSIL.Agent
14.0.0.4492

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
331020.49267

Malwarebytes
Adware.GoOffer
v2014.01.09.02

McAfee
Artemis!792180451832
5600.7255

McAfee Web Gateway
Artemis!792180451832
7.7255

MicroWorld eScan
Gen:Variant.Adware.Zusy.73969
15.0.0.27

Panda Antivirus
Suspicious file
14.01.09.02

Rising Antivirus
PE:Malware.Generic/QRS!1.9E2D
23.00.65.14107

Sophos
Generic PUA GE
4.96

Trend Micro House Call
TROJ_GEN.R0CBH07LR13
7.2.9

ViRobot
Trojan.Win32.S.Agent.245760.AO
2011.4.7.4223

File size:
198.2 KB (202,966 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\user\appdata\local\temp\afgytdrp_740989_setup.exe

File PE Metadata
Compilation timestamp:
12/25/2013 11:06:51 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:Aq9J/Ui9oq6VWI1cbu/s5m1pIY+YyDLMY8O:5j9lOWccbus58OY+YyDyO

Entry address:
0x3D5A2

Entropy:
7.5975

Code size:
237.5 KB (243,200 bytes)

The following file closely match afgytdrp_740989_setup.exe based on a fuzzy CTPH.

34 / 68    (PUP)
afgytdrp_386329_setup.exe (GOffer)  [99% match]  (64f43730233da185382f93460707103b071553d0)

Detection Incidence by Country