» Lucy dvdrip.exe
Overview
Analysis
File Details
Downloads (2)

Lucy dvdrip.exe

Taken By

Oleh Aleksyuk

The application Lucy dvdrip.exe by Oleh Aleksyuk has been detected as adware by 21 anti-malware scanners. This is a setup program which is used to install the application. It is built using the Crossrider cross-browser extension platform. While the file utilizes the Crossrider framework and delivery services, it is not owned by Crossrider. The file has been seen being downloaded from styleapplicationzillion.com and multiple other hosts.

File name:

Lucy dvdrip.exe

Publisher:

The Used (signed by Oleh Aleksyuk)

Product:

Taken By

Description:

Opinion Able

Version:

8.1.7.1

MD5:

ba32d8ba2779d82b7f8e1d51ff8abbe3

SHA-1:

7034b81e4e42bb040235da6b8d7a0695aeb13d2e

SHA-256:

ab2265ba064ff05129a313e4e5aa8eed22ae71cdd63c56466e6982d79289d516

Scanner detections:

21 / 68

Status:

Adware

Explanation:

The software may change the browser's home page and search provider settings as well as display advertisements.

Analysis date:

4/19/2024 1:54:27 AM UTC (today)

Scan engine

Detection

Engine version

AegisLab AV Signature

AdWare.MSIL.DomaIQ

2.1.4+

AhnLab V3 Security

PUP/Win32.MultiPlug

2014.11.10

Avira AntiVirus

Adware/MultiPlug.bfp

7.11.183.220

avast!

Win32:MultiPlug-CY [PUP]

141025-0

AVG

Adware Generic5.BIBW

2014.0.4189

Comodo Security

Application.Win32.MultiPlug.PNU

20035

Dr.Web

Trojan.Crossrider.31710

9.0.1.05190

ESET NOD32

Win32/AdWare.MultiPlug.BS (variant)

8.10695

Fortinet FortiGate

Riskware/Generic.AC.4443501

11/9/2014

F-Prot

W32/A-40c0358e

v6.4.7.1.166

G Data

Win32.Adware.Multiplug

14.11.24

IKARUS anti.virus

Win32.SuspectCrc

t3scan.1.8.3.0

K7 AntiVirus

Unwanted-Program

13.185.13943

Kaspersky

not-a-virus:AdWare.Win32.MultiPlug

15.0.0.494

Malwarebytes

PUP.Optional.Multiplug

v2014.11.09.02

McAfee

MultiPlug

5600.6951

NANO AntiVirus

Riskware.Win32.MultiPlug.deitvg

0.28.6.62995

nProtect

Trojan-Clicker/W32.MultiPlug.726896

14.11.06.01

Reason Heuristics

PUP.OlehAleksyuk.L

14.11.9.13

Sophos

MultiPlug

4.98

Vba32 AntiVirus

Downware.MultiPlug.gen

3.12.26.3

File size:

709.9 KB (726,896 bytes)

Product version:

5.6.6.3

Original file name:

Lucy dvdrip.exe

File type:

Executable application (Win32 EXE)

Language:

English

Common path:

C:\users\{user}\downloads\lucy dvdrip.exe

Digital Signature

Signed by:

Oleh Aleksyuk

Authority:

Unizeto Technologies S.A.

Valid from:

6/24/2014 11:42:54 AM

Valid to:

6/24/2015 11:42:54 AM

Subject:

E=oleh.aleksyuk@hotmail.com, CN=Oleh Aleksyuk, O=Oleh Aleksyuk, C=RU

Issuer:

CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:

3F42151CCAD6E8C610946EE44021DAF5

File PE Metadata

Compilation timestamp:

2/28/2013 4:26:22 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

12288:MAS49gLuOp0oEu3QqpD1dJK1My/4TyGTlY8LEnpGKa43TmJ7huo15Rqmr:MvUgiI0oEuPpD1do1v4+WlcpG6a1hVD

Entry address:

0x12167

Entry point:

E8, 8E, 3E, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, F0, FF, 41, 00, E8, D3, 12, 00, 00, E8, 5B, 40, 00, 00, 0F, B7, F0, 6A, 02, E8, 21, 3E, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, F0, 04, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8... 
[+]

Code size:

106 KB (108,544 bytes)

The file Lucy dvdrip.exe has been seen being distributed by the following 2 URLs.

http://styleapplicationzillion.com/.../v2144?installer_file_name=Lucy dvdrip&product_name=Your File&filesize=&st=1&uuid=qHPrqnxL0m8YcmMon93DQdCFDoTxHQZnd4BnO7VMH5aCUg8VmtkF6AKW1Wb6NwldhVKhq0dk7w1AWlLcvvACepgbOEfmMdyUZ8bYJp7c8TYnRFpUq0HJeRtGSp3KSbfImJ9slnbGnYoKzCn1i8mhOeFGGI6jtVQEg7yzoT0tJu71ax1E03UI6wx1qRIcDFVBgt3IIS4tiMwFIQTnbOnNoaAiSBOWkn9T6sBidv7ZhGw47Zo00VcCdIytEf1yOkuP5YbA67Kpvi5jvqOus36CXT2E3BmT9ZgtPJJ1Jvb7tz4YFx0rP1GBXJzrrx8S042zINoj8C1NKyQs5Q04IXiGWWizxUZIxHygzLCWjQYFNTTLJeecYWDURpBzAzkyybsSO085mtkFexy7GbLdiaJe2IEZVIm8FODsYdJO2MNJypydzz6i30fR568r4tTSMhFABfxRD57BM31GGJVg5wqm5InMMLvlooU4tocRlWJ9hpaJqD6RHxQoJBrVXtnBVRKEfYGUKKgh24459XfJjEdmiQSabWD9J318x19t6t4lN9oN7z6MHZdZ1ooAD05WshOOoMZ4cHKGzcpsmdrEh3eKCvdQGf5ENBSm6SExetziBsVyhJ46tyYYqL9gSyLecTnYK463QC6KyuiZQXMhcKpTfc7JgsXq2SJNdQTyAJ9Sp8bITDHBygneh4KxlqftsM8pl4BcUrmDNG7leVGTY3qzjBFVgqJ2Xt7BfSskiAr5K7Vzj5TSBIT7fjvjy8fu0OgxEQqVdSBkPYYERp6CL3GqppIAUXraD29kzmoz7pZ65Lah3MOMbe3FJHgUIwBW5BDihTuogBYFmHXgjA700AbqDBJBB5jekT8Ubz05QXeno0a

http://styleapplicationzillion.com/v2144?installer_file_name=Lucy dvdrip

Remove Lucy dvdrip.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.