» Lucy dvdrip.exe
Overview
Analysis
File Details
Downloads (2)

Lucy dvdrip.exe

As Physically

Oleh Aleksyuk

The application Lucy dvdrip.exe by Oleh Aleksyuk has been detected as adware by 21 anti-malware scanners. This is a setup program which is used to install the application. It is built using the Crossrider cross-browser extension platform. While the file utilizes the Crossrider framework and delivery services, it is not owned by Crossrider. The file has been seen being downloaded from styleapplicationzillion.com and multiple other hosts.

File name:

Lucy dvdrip.exe

Publisher:

Of Or (signed by Oleh Aleksyuk)

Product:

As Physically

Description:

Southeastern Is

Version:

3.1.4.3

MD5:

0eea46c3d47265344708b1de9cbeec4b

SHA-1:

befcab1752b6487fef2ccd7757d7ee6046a2d8e1

SHA-256:

e7b3441291e0dd248fcfa34033a695e7ee0786560af3af8dbd8ff7aa020c2382

Scanner detections:

21 / 68

Status:

Adware

Explanation:

The software may change the browser's home page and search provider settings as well as display advertisements.

Analysis date:

4/18/2024 12:06:51 AM UTC (today)

Scan engine

Detection

Engine version

AegisLab AV Signature

AdWare.MSIL.DomaIQ

2.1.4+

AhnLab V3 Security

PUP/Win32.MultiPlug

2014.11.10

Avira AntiVirus

Adware/MultiPlug.bfp

7.11.183.220

avast!

Win32:MultiPlug-CY [PUP]

141025-0

AVG

Adware Generic5.BIBW

2014.0.4189

Comodo Security

Application.Win32.MultiPlug.PNU

20035

Dr.Web

Trojan.Crossrider.31710

9.0.1.05190

ESET NOD32

Win32/AdWare.MultiPlug.BS application

7.0.302.0

Fortinet FortiGate

Riskware/Generic.AC.4443501

11/9/2014

F-Prot

W32/A-40c0358e

v6.4.7.1.166

G Data

Win32.Adware.Multiplug

14.11.24

IKARUS anti.virus

Win32.SuspectCrc

t3scan.1.8.3.0

K7 AntiVirus

Unwanted-Program

13.185.13943

Kaspersky

not-a-virus:AdWare.Win32.MultiPlug

15.0.0.543

Malwarebytes

PUP.Optional.Multiplug

v2014.11.09.02

McAfee

MultiPlug

5600.6951

NANO AntiVirus

Riskware.Win32.MultiPlug.deitvg

0.28.6.62995

nProtect

Trojan-Clicker/W32.MultiPlug.726896

14.11.06.01

Reason Heuristics

PUP.OlehAleksyuk.L

14.11.9.13

Sophos

MultiPlug

4.98

Vba32 AntiVirus

Downware.MultiPlug.gen

3.12.26.3

File size:

709.9 KB (726,896 bytes)

Product version:

3.6.3.8

Original file name:

Lucy dvdrip.exe

File type:

Executable application (Win32 EXE)

Language:

English

Common path:

C:\users\{user}\downloads\lucy dvdrip.exe

Digital Signature

Signed by:

Oleh Aleksyuk

Authority:

Unizeto Technologies S.A.

Valid from:

6/24/2014 11:42:54 AM

Valid to:

6/24/2015 11:42:54 AM

Subject:

E=oleh.aleksyuk@hotmail.com, CN=Oleh Aleksyuk, O=Oleh Aleksyuk, C=RU

Issuer:

CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:

3F42151CCAD6E8C610946EE44021DAF5

File PE Metadata

Compilation timestamp:

1/21/2013 9:02:47 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

12288:kAS4mYPXNhw/9biMgoJWe+73ZVom61zqDqR7DQmT25nk6mtqHPz1ytTLn8waxY5l:kv7YPdhc9JfSZVD61zqGRDQmmklUHPzs

Entry address:

0x12167

Entry point:

E8, 8E, 3E, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, F0, FF, 41, 00, E8, D3, 12, 00, 00, E8, 5B, 40, 00, 00, 0F, B7, F0, 6A, 02, E8, 21, 3E, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, F0, 04, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8... 
[+]

Code size:

106 KB (108,544 bytes)

The file Lucy dvdrip.exe has been seen being distributed by the following 2 URLs.

http://styleapplicationzillion.com/.../v2144?installer_file_name=Lucy dvdrip&product_name=Your File&filesize=&st=1&uuid=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

http://styleapplicationzillion.com/v2144?installer_file_name=Lucy dvdrip

Remove Lucy dvdrip.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.