» anvil_downloader-qal01f7km.exe.zip
Overview
Analysis
File Details
Downloads (1)

anvil_downloader-qal01f7km.exe.zip

The file anvil_downloader-qal01f7km.exe.zip has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The file has been seen being downloaded from sub.reichtron.com.

File name:

MD5:

74c5b37a2e5ff030596d4a98bb0a655c

SHA-1:

879fa89af811225d0a3bcd9e58a0b7db646ede0a

SHA-256:

9b5f2a8e3a2bc77805c0d008ac8b1a285532c2e94cd7385204f3fd1f808f4930

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

5/3/2024 7:40:10 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

Adware.Bundler (M)

16.7.19.3

File size:

379.8 KB (388,919 bytes)

Common path:

C:\users\{user}\downloads\anvil_downloader-qal01f7km.exe.zip

The file anvil_downloader-qal01f7km.exe.zip has been seen being distributed by the following URL.

http://sub.reichtron.com/QaL01f7kM879bb512d7fae360c596a858d613a2845ixpvjf1iomYToyOntzOjI6InRzIjtpOjE0MzQ2NDczMDc7czoxOiJmIjtzOjcyOiIvaG9tZS93d3cvYXNzZXRzL2JldHRlcl9pbnN0YWxsZXIvaW5zdGFsbGVycy9jbGkvc2V0dXBfMTQzNDY0Njg5MzAzMS5leGUiO30=

Remove anvil_downloader-qal01f7km.exe.zip - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.