» gta.tokyo.drift.www.tunisia-sat.com_by_trancer_tn.part1.rar.exe
Overview
Analysis
File Details
Downloads (1)

gta.tokyo.drift.www.tunisia-sat.com_by_trancer_tn.part1.rar.exe

The Day

Capital Marked

The application gta.tokyo.drift.www.tunisia-sat.com_by_trancer_tn.part1.rar.exe has been detected as a potentially unwanted program by 22 anti-malware scanners. This is a setup program which is used to install the application. This program installs potentially unwanted software on your PC at the same time as the software you are trying to install, without adequate consent. The file has been seen being downloaded from styleapplicationzillion.com.

File name:

Publisher:

Capital Marked

Product:

The Day

Description:

Text Born

Version:

9.7.0.7

MD5:

38b8bd1ec2374f68efcf762299804558

SHA-1:

50ffc98f8da6b8e1f1b88be6f5e675de19d6631a

SHA-256:

d795bfcc0a932d03a6bb061a756fbd49978a416daf4468dcc2f8def17135f346

Scanner detections:

22 / 68

Status:

Potentially unwanted

Analysis date:

5/7/2024 11:43:11 PM UTC (a few moments ago)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Application.Bundler.16

840

AegisLab AV Signature

AdWare.W32.MultiPlug

2.1.4+

AhnLab V3 Security

PUP/Win32.MultiPlug

2014.10.18

Avira AntiVirus

ADWARE/MultiPlug.Gen4

7.11.179.110

avast!

Win32:MultiPlug-CX [PUP]

141003-0

AVG

Adware Generic5.BIKK

2014.0.4040

Bitdefender

Gen:Variant.Application.Bundler.16

1.0.20.1455

Bkav FE

HW32.Packed

1.3.0.4959

Comodo Security

Application.Win32.MultiPlug.PNU

19833

Emsisoft Anti-Malware

Gen:Variant.Application.Bundler.16

14.10.18

ESET NOD32

Win32/AdWare.MultiPlug.BS application

7.0.302.0

Fortinet FortiGate

Riskware/Generic.AC.4443501

10/18/2014

F-Prot

W32/A-40c0358e

v6.4.7.1.166

F-Secure

Gen:Variant.Application.Bundler

11.2014-18-10_7

G Data

Gen:Variant.Application.Bundler.16

14.10.24

IKARUS anti.virus

AdWare.AdPlugin

t3scan.1.7.8.0

K7 AntiVirus

Unwanted-Program

13.184.13718

Kaspersky

HEUR:Trojan.Win32.Generic

14.0.0.3084

McAfee

MultiPlug-FOQ

5600.6974

MicroWorld eScan

Gen:Variant.Application.Bundler.16

15.0.0.873

NANO AntiVirus

Riskware.Win32.MultiPlug.dekdbb

0.28.2.62671

Vba32 AntiVirus

Downware.MultiPlug.gen

3.12.26.3

File size:

728.5 KB (745,984 bytes)

Product version:

0.9.2.2

Original file name:

GTA.Tokyo.Drift.Www.Tunisia-Sat.Com_By_T.exe

File type:

Executable application (Win32 EXE)

Language:

English

Common path:

C:\users\{user}\downloads\gta.tokyo.drift.www.tunisia-sat.com_by_trancer_tn.part1.rar.exe

File PE Metadata

Compilation timestamp:

11/24/2013 5:25:03 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

12288:bmmBkI5sudEMgzrHQ8PZUOiUl5CGrjsi7vTyzz94T7pUpDchOnEr+TQskinglav0:BEMgfwYhBl5CGrYirTkOT7puohsEy8sm

Entry address:

0x115B7

Entry point:

E8, 8E, 3E, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, F0, EF, 41, 00, E8, 83, 0B, 00, 00, E8, 5B, 40, 00, 00, 0F, B7, F0, 6A, 02, E8, 21, 3E, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, F0, 04, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8... 
[+]

Code size:

103 KB (105,472 bytes)

The file gta.tokyo.drift.www.tunisia-sat.com_by_trancer_tn.part1.rar.exe has been seen being distributed by the following URL.

http://styleapplicationzillion.com/v2382?installer_file_name=GTA.Tokyo.Drift.Www.Tunisia-Sat.Com_By_Trancer_Tn.part1.rar&offer_id=36&aff_id=2323

Remove gta.tokyo.drift.www.tunisia-sat.com_by_trancer_tn.part1.rar.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.