home

izle.exe

HD PLAYER

ABDULKADIR SAHIN

The application izle.exe by ABDULKADIR SAHIN has been detected as adware by 26 anti-malware scanners. This is a setup program which is used to install the application. According to AVG, this software downloads additional adware offers during setup. The file has been seen being downloaded from goo.gl and multiple other hosts.
Publisher:
HD  (signed by ABDULKADIR SAHIN)

Product:
HD PLAYER

Version:
1.0.0.0

MD5:
6799a1a9dce4d033cb2362fe3c0fc396

SHA-1:
67af51f5f2b4b7cb638cf31a7afe0de362cba285

SHA-256:
43a16280b30581e395fefcc90571cc36d87af363120887d6d36c4fcde2455e91

Scanner detections:
26 / 68

Status:
Adware

Analysis date:
4/25/2024 7:43:05 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.GenericKD.1586261
958

Agnitum Outpost
Trojan.Badur
7.1.1

Avira AntiVirus
TR/Rogue.1453974
7.11.153.232

AVG
Downloader.MSIL
2015.0.3436

Bitdefender
Trojan.GenericKD.1586261
1.0.20.865

Bkav FE
W32.Clodc13.Trojan
1.3.0.4959

Comodo Security
UnclassifiedMalware
18485

Emsisoft Anti-Malware
Trojan.GenericKD.1586261
8.14.06.22.07

ESET NOD32
MSIL/TrojanDownloader.Agent.OE (variant)
8.9913

Fortinet FortiGate
MSIL/Agent.OA!tr.dldr
6/22/2014

F-Secure
Trojan.GenericKD.1586261
11.2014-22-06_1

G Data
Trojan.GenericKD.1586261
14.6.24

IKARUS anti.virus
Trojan.Win32.Badur
t3scan.1.6.1.0

K7 AntiVirus
Trojan-Downloader
13.1712333

Kaspersky
HEUR:Trojan.Win32.Generic
14.0.0.3673

McAfee
Artemis!6799A1A9DCE4
5600.7092

Microsoft Security Essentials
TrojanDownloader:MSIL/Balamid.A
1.10600

MicroWorld eScan
Trojan.GenericKD.1586261
15.0.0.519

nProtect
Trojan.GenericKD.1586261
14.06.08.01

Qihoo 360 Security
Win32/Trojan.Downloader.5e3
1.0.0.1015

Quick Heal
Trojan.Generic.r4
6.14.14.00

Reason Heuristics
PUP.ABDULKADIRSAHIN.E
14.7.3.9

Trend Micro House Call
TROJ_GEN.R0CBOH0CB14
7.2.173

Vba32 AntiVirus
Trojan.Badur.guuo
3.12.26.0

VIPRE Antivirus
Trojan.Win32.Generic
30102

XVirus List
Win32.Detected
2.7.3

File size:
51.3 KB (52,560 bytes)

Product version:
1.0.0.0

Copyright:
HD. All rights reserved.

Original file name:
hdplayer.exe

File type:
Executable application (Win32 EXE)

Language:
Turkish (Turkey)

Common path:
C:\users\{user}\downloads\izle.exe

Digital Signature
Signed by:
ABDULKADIR SAHIN

Authority:
VeriSign, Inc.

Valid from:
1/18/2013 2:00:00 AM

Valid to:
3/20/2014 1:59:59 AM

Subject:
CN=ABDULKADIR SAHIN, OU=Individual Developer, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=No Organization Affiliation, L=ANKARA, S=KECIOREN, C=TR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
516CAE126302D8B129C8550A077CDF6F

File PE Metadata
Compilation timestamp:
12/7/2013 9:16:31 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
768:dJQIHLijv2ECOGYUAUjMSKv15kFU8bF5Gur4/2TV0zYcHeWDmu9YG:LQIrijv2ECYraKp8bF5GY4KxAD9

Entry address:
0xBDEE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 63, 0C, D5, 12, 21, B1, 59, 7C, 39, 17, F9, BD, 28, 03, 21, 17, 88, 00, F9, 82, 6B, 91, AD, 2B, 49, 06, BF, B6, AC, 40, 3B, 13, 5F, F3, 43, A7, 15, 14, DF, 84, 0F, 44, 5C, D2, 25, 4C, A9, 92, 52, 66, 68, 6E, 20, 4D, 18, 22, 76, B5, 33, 11, 12, 33, 0C, 6D, 0A, 20, 4D, 18, 22, 9E, A1, 29, 61, 1C, 76, B5, 05, 19, 01, 58, 04, 00, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
39.5 KB (40,448 bytes)

The file izle.exe has been seen being distributed by the following 2 URLs.

http://goo.gl/kMvQyY

http://goo.gl/2tX8Gc

Remove izle.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.