home

ManyDownloader.exe

ManyDownloader

Visicom Media Inc.

This is part of the Visicom VMN web browser toolbar and extension that will modify the browser's default search provider, DNS, and home page functions. The application ManyDownloader.exe by Visicom Media has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Visicom Media Inc.  (signed and verified)

Product:
ManyDownloader

Version:
1.5.1.147

MD5:
047ee76224fa9ecc3121567f5ad61aab

SHA-1:
37df8bc8aad6a8bdb3c7461b0b95aead15c000f9

SHA-256:
e557e29c2b5286447ad4ac89abc8a84d234734180a2ac84798b169c14ba4f17a

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
4/23/2024 12:26:50 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Visicom (M)
17.1.31.5

File size:
25.7 MB (26,905,352 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 1996-2014 Visicom Media Inc.

Original file name:
ManyDownloader.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\visicom media\manydownloader\manydownloader.exe

Digital Signature
Signed by:
Visicom Media Inc.

Authority:
Thawte, Inc.

Valid from:
5/8/2014 2:00:00 AM

Valid to:
6/21/2016 1:59:59 AM

Subject:
CN=Visicom Media Inc., OU=SECURE APPLICATION DEVELOPMENT, O=Visicom Media Inc., L=Brossard, S=Quebec, C=CA

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
266F9E30991B0C3EFC03DA9B8CDDB68D

File PE Metadata
Compilation timestamp:
8/12/2014 8:10:23 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x12198D8

Entry point:
55, 8B, EC, 83, C4, EC, 53, 56, 33, C0, 89, 45, EC, B8, 68, 29, 5E, 01, E8, E1, 62, DF, FE, 8B, 1D, 48, E5, 6E, 01, 8B, 35, 2C, CA, 6E, 01, 33, C0, 55, 68, D2, 9A, 61, 01, 64, FF, 30, 64, 89, 20, E8, 92, E5, E3, FE, 83, C4, F8, DD, 1C, 24, 9B, 8B, C3, BA, EC, 9A, 61, 01, E8, F7, DB, F9, FF, E8, 72, 77, F0, FF, E8, 75, E5, E3, FE, 83, C4, F8, DD, 1C, 24, 9B, 8B, C3, BA, FC, 9A, 61, 01, E8, DA, DB, F9, FF, E8, 49, 73, F0, FF, 84, C0, 0F, 84, 71, 01, 00, 00, E8, 50, E5, E3, FE, 83, C4, F8, DD, 1C, 24, 9B, 8B...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
18.1 MB (18,972,160 bytes)

Windows Firewall Allowed Program
Name:
manydownloader udp in


Remove ManyDownloader.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.