» MarvelousDesigner3Enterprise32Bit64Bit.exe
Overview
Analysis
File Details

MarvelousDesigner3Enterprise32Bit64Bit.exe

Setup

Dey yazilim ve internet hizmetleri san. tic. ltd. sti.

The application MarvelousDesigner3Enterprise32Bit64Bit.exe by Dey yazilim ve internet hizmetleri san. tic. ltd. sti has been detected as adware by 17 anti-malware scanners. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software.

File name:

Publisher:

Microsoft (signed by Dey yazilim ve internet hizmetleri san. tic. ltd. sti.)

Product:

Setup

Version:

1.0.0.0

MD5:

37687e458d5af7efd1c400aa3d9c3f7b

SHA-1:

cc9eb10f23a5d5de7cadf4f3e9b67195802815df

SHA-256:

fcd90fc17b18787bc2bf607ba1d1340872f891bb429a1d3c2e3624e4f007e8db

Scanner detections:

17 / 68

Status:

Adware

Analysis date:

4/19/2024 6:48:43 PM UTC (today)

Scan engine

Detection

Engine version

Avira AntiVirus

Adware/Joedown.569048

7.11.200.82

AVG

Generic

2016.0.3233

Comodo Security

ApplicUnwnt

20650

Dr.Web

Trojan.KillFiles.18730

9.0.1.010

ESET NOD32

MSIL/Adware.Joedown (variant)

9.10986

Fortinet FortiGate

Adware/Agent

1/10/2015

G Data

Win32.Application.Agent.GJNH62

15.1.24

IKARUS anti.virus

not-a-virus:AdWare.MSIL.Agent

t3scan.1.8.6.0

Kaspersky

not-a-virus:AdWare.MSIL.Agent

14.0.0.2662

McAfee

Artemis!37687E458D5A

5600.6889

NANO AntiVirus

Riskware.Win32.KillFiles.dlpjvw

0.30.0.64448

Panda Antivirus

Generic Suspicious

15.01.10.02

Qihoo 360 Security

HEUR/QVM03.0.Malware.Gen

1.0.0.1015

Reason Heuristics

PUP.Installer.Amonitize

15.2.14.11

Sophos

Generic PUA MM

4.98

Trend Micro House Call

TROJ_GEN.R02SC0OA815

7.2.10

Trend Micro

TROJ_GEN.R02SC0OA815

10.465.10

File size:

555.7 KB (569,048 bytes)

Product version:

1.0.0.0

Trademarks:

Microsoft

Original file name:

SetupFull.exe

File type:

Executable application (Win32 EXE)

Language:

Turkish (Turkey)

Digital Signature

Signed by:

Dey yazilim ve internet hizmetleri san. tic. ltd. sti.

Authority:

COMODO CA Limited

Valid from:

3/12/2014 2:00:00 AM

Valid to:

3/13/2015 1:59:59 AM

Subject:

CN=Dey yazilim ve internet hizmetleri san. tic. ltd. sti., O=Dey yazilim ve internet hizmetleri san. tic. ltd. sti., STREET=kuloglu mah alyon gecidi sok, STREET=beyoglu, L=istanbul, S=istanbul, PostalCode=34433, C=TR

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00FD3AA42CD883A6D47CC56CDA9837EB85

File PE Metadata

Compilation timestamp:

1/5/2015 7:37:54 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

6144:ES/J1s0ldUmx/bLbYnwch3SoMGsgL7GZOsLa30hTb5MGsgL7G/:ES/J1sGdUmx/bwnwcco/nGZY09l/nG/

Entry address:

0x62F2E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

388 KB (397,312 bytes)

Remove MarvelousDesigner3Enterprise32Bit64Bit.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.