» ativador_windows_7_definitivo_todas_as_versoes_32_64_bits_ph_downs_downloader-q4gx4addt.exe.zip
Overview
Analysis
File Details
Downloads (1)

ativador_windows_7_definitivo_todas_as_versoes_32_64_bits_ph_downs_downloader-q4gx4addt.exe.zip

The file ativador_windows_7_definitivo_todas_as_versoes_32_64_bits_ph_downs_downloader-q4gx4addt.exe.zip has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The file has been seen being downloaded from sub.reichtron.com.

File name:

MD5:

d9afa76b4233ab06bd441da4d152b845

SHA-1:

e18e314862a6a34c7c901ef1fe2faf50d56045da

SHA-256:

ce17171e1a2d1f454527b2fe9b085abc967d68f75a2f826ec5ea6f887d1590c1

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

4/26/2024 4:25:20 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

Adware.Bundler.Meta (M)

16.6.22.17

File size:

380.4 KB (389,542 bytes)

Common path:

C:\users\{user}\downloads\ativador_windows_7_definitivo_todas_as_versoes_32_64_bits_ph_downs_downloader-q4gx4addt.exe.zip

The file ativador_windows_7_definitivo_todas_as_versoes_32_64_bits_ph_downs_downloader-q4gx4addt.exe.zip has been seen being distributed by the following URL.

http://sub.reichtron.com/Q4Gx4aDDt4d496767d6779a5fc8b5d99c1efd552b5oDCAX6RB4vYToyOntzOjI6InRzIjtpOjE0MzUwODU4ODg7czoxOiJmIjtzOjcyOiIvaG9tZS93d3cvYXNzZXRzL2JldHRlcl9pbnN0YWxsZXIvaW5zdGFsbGVycy9jbGkvc2V0dXBfMTQzNTA4MjU0ODQwNC5leGUiO30=

Remove ativador_windows_7_definitivo_todas_as_versoes_32_64_bits_ph_downs_downloader-q4gx4addt.exe.zip - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.