filedownloaded20successfully_downloader-n4qh7po0m.exe.zip
The file filedownloaded20successfully_downloader-n4qh7po0m.exe.zip has been detected as a potentially unwanted program by 19 anti-malware scanners. According to AVG, this software downloads additional adware offers during setup. The file has been seen being downloaded from sub.yorkshatb.com.
File name:
filedownloaded20successfully_downloader-n4qh7po0m.exe.zip
MD5:
23c507cd8ebc6f142faff67fede8a7f0
SHA-1:
0da4e15ae9300199341cec9c06cef747c4b1c8c6
SHA-256:
b6b274dbd14e64c380cf4cc6df5b5b961f9e754f60f16c19e91a2b2a49fc9385
Scanner detections:
19 / 68
Status:
Potentially unwanted
Explanation:
Uses the Somoto 'BetterInstaller' to bundle additional (unwanted) software during install without adequate consent.
Analysis date:
4/27/2024 1:10:26 AM UTC (today)
Scan engine
Detection
Engine version
Lavasoft Ad-Aware
Application.Bundler.Somoto.AH
5805642
Arcabit
Application.Bundler.Somoto.AH
1.0.0.425
avast!
NSIS:Adware-ZI [PUP]
2014.9-150902
Bitdefender
Application.Bundler.Somoto.AH
1.0.20.1225
Clam AntiVirus
Win.Adware.Somoto
0.98/20865
Emsisoft Anti-Malware
Application.Bundler.Somoto.AH
10.0.0.5366
ESET NOD32
Win32/Somoto.G potentially unwanted application
7.0.302.0
F-Prot
W32/SomotoBetterInstaller.F.
v6.4.7.1.166
F-Secure
Application.Bundler.Somoto
11.2015-02-09_4
K7 AntiVirus
Trojan
13.2017086
Kaspersky
not-a-virus:HEUR:Downloader.NSIS.Somoto
14.0.0.1488
MicroWorld eScan
Application.Bundler.Somoto.AH
16.0.0.735
NANO AntiVirus
Trojan.Win32.Agent.dtledk
0.30.24.3283
Panda Antivirus
Trj/CI.A
15.09.02.11
Qihoo 360 Security
HEUR/QVM42.1.Malware.Gen
1.0.0.1015
Trend Micro House Call
TROJ_GE.32B4F11F
7.2.245
Trend Micro
TROJ_GE.32B4F11F
10.465.02
VIPRE Antivirus
Trojan.Win32.Generic
43380
File size:
376.4 KB (385,433 bytes)
Common path:
C:\users\{user}\downloads\filedownloaded20successfully_downloader-n4qh7po0m.exe.zip
The file filedownloaded20successfully_downloader-n4qh7po0m.exe.zip has been seen being distributed by the following URL.