» baixar cd - galinha pint... pré lancamento 2014.exe
Overview
Analysis
File Details

baixar cd - galinha pint... pré lancamento 2014.exe

CHummer

Luftix Limited

The application baixar cd - galinha pint... pré lancamento 2014.exe, “Description is empty” by Luftix Limited has been detected as adware by 20 anti-malware scanners. This program installs potentially unwanted software on your PC at the same time as the software you are trying to install, without adequate consent. It is also typically executed from the user's temporary directory.

File name:

Publisher:

Elit -e - Company (signed by Luftix Limited)

Product:

CHummer

Description:

Description is empty

Version:

3, 5, 13, 0

MD5:

4e242431389b46e54b7eea27edfa5c8d

SHA-1:

1c6d31b6685811861dd54530770496e03f96eac2

SHA-256:

63c3e75e6e9d939d96fb016f8c1e1edd8b2b4452f367bc47a453b1399b21dd8a

Scanner detections:

20 / 68

Status:

Adware

Analysis date:

4/27/2024 12:07:36 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Application.Bundler.Jaiks.244

826

Agnitum Outpost

PUA.4Shared

7.1.1

Avira AntiVirus

APPL/Downloader.Gen4

7.11.182.172

AVG

Generic

2015.0.3304

Bitdefender

Gen:Variant.Application.Bundler.Jaiks.244

1.0.20.1520

Clam AntiVirus

Win.Trojan.Agent-785988

0.98/21411

ESET NOD32

Win32/4Shared (variant)

8.10653

F-Prot

W32/A-1ed09b26

v6.4.7.1.166

F-Secure

Gen:Variant.Application.Bundler

11.2014-31-10_6

G Data

Gen:Variant.Application.Bundler.Jaiks.244

14.10.24

IKARUS anti.virus

Trojan.Win32.Badur

t3scan.1.8.3.0

Malwarebytes

PUP.Optional.Elite

v2014.10.31.11

McAfee

PUP-FNX

5600.6960

MicroWorld eScan

Gen:Variant.Application.Bundler.Jaiks.244

15.0.0.912

NANO AntiVirus

Trojan.Win32.4Shared.dfhejw

0.28.6.62995

Reason Heuristics

PUP.LuftixLimited.m

14.11.3.21

Sophos

4Share Downloader

4.98

SUPERAntiSpyware

PUP.4Shared/Variant

10265

Vba32 AntiVirus

Trojan.Badur

3.12.26.3

Zillya! Antivirus

Backdoor.PePatch.Win32.44192

2.0.0.1973

File size:

540.1 KB (553,064 bytes)

Product version:

3, 5, 13, 0

2014

Trademarks:

Original file name:

DHelper

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\baixar cd - galinha pint... pré lancamento 2014.exe

Digital Signature

Signed by:

Luftix Limited

Authority:

VeriSign, Inc.

Valid from:

11/21/2013 10:00:00 PM

Valid to:

11/22/2015 9:59:59 PM

Subject:

CN=Luftix Limited, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Luftix Limited, L=Limassol, S=Limassol, C=CY

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

3A7F4B2BE2CD0298681BD484A9D66769

File PE Metadata

Compilation timestamp:

9/5/2014 12:52:27 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

12288:IJBDn7/o5rrBb4pLmadg5rixchdwr3DbBumm7V:InnDmCmaQGxc7u3Dc7V

Entry address:

0x425D8

Entry point:

E8, 3A, BF, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 14, A1, 00, DE, 46, 00, 33, C5, 89, 45, FC, 53, 56, 33, DB, 57, 8B, F1, 39, 1D, BC, 0E, 47, 00, 75, 38, 53, 53, 33, FF, 47, 57, 68, D4, 1C, 46, 00, 68, 00, 01, 00, 00, 53, FF, 15, 94, C1, 45, 00, 85, C0, 74, 08, 89, 3D, BC, 0E, 47, 00, EB, 15, FF, 15, DC, C0, 45, 00, 83, F8, 78, 75, 0A, C7, 05, BC, 0E, 47, 00, 02, 00, 00, 00, 39, 5D, 14, 7E, 22, 8B, 4D, 14, 8B, 45, 10, 49, 38, 18, 74, 08, 40, 3B, CB, 75, F6, 83, C9, FF, 8B, 45, 14, 2B, C1... 
[+]

Code size:

361.5 KB (370,176 bytes)

Remove baixar cd - galinha pint... pré lancamento 2014.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.