home

maxiget.exe

Get your downloads

Maxiget Limited

This is a bundle installer which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed with minimal consent. The application maxiget.exe by Maxiget Limited has been detected as adware by 15 anti-malware scanners. The program is a setup application that uses the New IT Desktop Setup installer.
Publisher:
Company #1  (signed by Maxiget Limited)

Product:
Get your downloads

Version:
3, 1, 23, 0

MD5:
81c0cfc6e6f493bd5bf8a18f1a881aa2

SHA-1:
e7ea159a96fb3b5cd6b211ab6f9516e3ba0b578b

SHA-256:
5547f1ab9b712d84b20de87176784c53ae1cc995c30389f06d0d5b7ede61cdc2

Scanner detections:
15 / 68

Status:
Adware

Explanation:
This is a modified installer version of the software and bundles additional offers including adware.

Description:
This is an installer which may bundle legitimate applications with offers for additional 3rd-party applications that may be unwanted by the user. While the installer contains an 'opt-out' feature this is not set be defult and is usually overlooked.

Analysis date:
4/26/2024 6:06:56 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Trojan.Graftor
7.1.1

Avira AntiVirus
APPL/Downloader.Gen
7.11.140.10

AVG
MalSign.Generic
2017.0.2832

Comodo Security
Application.Win32.GetFaster.A
18010

Dr.Web
Adware.Downware.1613
9.0.1.046

ESET NOD32
Win32/Maxiget (variant)
10.9610

IKARUS anti.virus
not-a-virus:Downloader.Win32.GetFaster
t3scan.1.6.1.0

McAfee
Artemis!AD182F50423C
5600.6488

NANO AntiVirus
Trojan.Win32.Downware.cqujlm
0.28.0.58720

Reason Heuristics
PUP.New IT Limited.Maxiget.Bundler (M)
16.2.15.19

Rising Antivirus
PE:PUF.4Shared!1.9C25
23.00.65.16213

Sophos
4Share Downloader
4.98

SUPERAntiSpyware
Trojan.Agent/Gen-Graftor
9321

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
3.12.24.3

VIPRE Antivirus
Trojan.Win32.Generic
27818

File size:
481.4 KB (492,912 bytes)

Product version:
3, 1, 23, 0

Copyright:
Copyright (C) 2013

Trademarks:
TM(c)

File type:
Executable application (Win32 EXE)

Bundler/Installer:
New IT Desktop Setup

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\maxiget.exe

Digital Signature
Signed by:
Maxiget Limited

Authority:
GoDaddy.com, Inc.

Valid from:
8/15/2013 1:41:32 PM

Valid to:
8/15/2016 1:41:32 PM

Subject:
CN=Maxiget Limited, O=Maxiget Limited, L=Limassol, S=Cyprus, C=CY

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
045BA815265145

File PE Metadata
Compilation timestamp:
12/26/2013 7:04:43 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:YjXJV+Ktq4EnEPvDLFoVJGgvmS3hdMJHCB++Y4auBY4oGMePe+hX9svT5zOYQ5BE:UJV+Ktq4xPPW3hdMJHT94LF1B+nYNfU

Entry address:
0x26A55

Entry point:
E8, 13, 92, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 14, A1, C0, 5A, 44, 00, 33, C5, 89, 45, FC, 53, 56, 33, DB, 57, 8B, F1, 39, 1D, 1C, 71, 44, 00, 75, 38, 53, 53, 33, FF, 47, 57, 68, 94, D2, 43, 00, 68, 00, 01, 00, 00, 53, FF, 15, 70, A1, 43, 00, 85, C0, 74, 08, 89, 3D, 1C, 71, 44, 00, EB, 15, FF, 15, 74, A0, 43, 00, 83, F8, 78, 75, 0A, C7, 05, 1C, 71, 44, 00, 02, 00, 00, 00, 39, 5D, 14, 7E, 22, 8B, 4D, 14, 8B, 45, 10, 49, 38, 18, 74, 08, 40, 3B, CB, 75, F6, 83, C9, FF, 8B, 45, 14, 2B, C1...
 
[+]

Entropy:
7.0192

Code size:
228 KB (233,472 bytes)

Remove maxiget.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.