home

mediaget.exe

MediaGet 2

Media Get LLC

The application mediaget.exe, “MediaGet torrent client” by Media Get has been detected as a potentially unwanted program by 12 anti-malware scanners. It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘MediaGet2’. This file is typically installed with the program MediaGet by Media Get LLC. The file has been seen being downloaded from serv11.boxca.com.
Publisher:
MediaGet LLC  (signed by Media Get LLC)

Product:
MediaGet 2

Description:
MediaGet torrent client

Version:
2.1.1888.0

MD5:
4de5df017c0a140add5b0dd0d9b9f346

SHA-1:
b148af293fd2b95017e2c7c2b50660af9cd09574

SHA-256:
d5f9b1bcb7c458e3ae8a1938307f1ff6bfe964e2ecf84f336a3b192be423b8a6

Scanner detections:
12 / 68

Status:
Potentially unwanted

Analysis date:
4/24/2024 8:58:38 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
Adware/MediaG.B.1.B
7.11.102.78

avast!
Win32:MediaGet-L [PUP]
2014.9-160209

Bkav FE
W32.HfsAdware
1.3.0.6379

Comodo Security
ApplicUnsaf.Win32.Downloader.MediaGet.A
16927

Dr.Web
Program.MediaGet.122
9.0.1.040

G Data
Win32.Adware.MediaGet
16.2.24

IKARUS anti.virus
AdWare.Win32.MediaGet
t3scan.1.8.6.0

Kaspersky
not-a-virus:Downloader.Win32.MediaGet
14.0.0.690

Reason Heuristics
Win32.Generic
16.2.9.0

Rising Antivirus
Trojan.Win32.Generic.12DDF2E3
23.00.65.16207

Trend Micro House Call
TROJ_GEN.F47V0816
7.2.40

Vba32 AntiVirus
Downloader.MediaGet
3.12.24.2

File size:
9.1 MB (9,582,824 bytes)

Product version:
2.1.1888.0

Copyright:
Copyright © 2011 MediaGet LLC

Original file name:
mediaget

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\mediaget2\mediaget.exe

Digital Signature
Signed by:
Media Get LLC

Authority:
The USERTRUST Network

Valid from:
3/8/2011 6:00:00 PM

Valid to:
3/8/2014 5:59:59 PM

Subject:
CN=Media Get LLC, O=Media Get LLC, STREET=Sadovaya 53, L=Saint-Petersburg, S=Russia, PostalCode=190344, C=RU

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
71D26D579AEE6A768F27CF3B6D4E9A91

File PE Metadata
Compilation timestamp:
10/15/2012 5:31:51 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
98304:iVM8ift6/Q2QIcEUL93F/Bn13dLaprVxLpFcqnMQxiC2ChGNIwV01/HoWcmiDaXr:iVMt2Q/EMxBYhcqxMCBw2Ac

Entry address:
0x399CF0

Entry point:
E8, 89, 06, 00, 00, E9, D7, FC, FF, FF, FF, 25, 24, 54, 83, 00, FF, 25, BC, 55, 83, 00, FF, 25, 54, 55, 83, 00, FF, 25, 50, 55, 83, 00, 8B, FF, 55, 8B, EC, FF, 75, 08, E8, 81, F5, FF, FF, 59, 5D, C3, 8B, FF, 55, 8B, EC, 5D, E9, 1D, 00, 00, 00, CC, FF, 25, 4C, 55, 83, 00, FF, 25, 48, 55, 83, 00, 8B, FF, 55, 8B, EC, FF, 75, 08, E8, 17, F4, FF, FF, 59, 5D, C3, 6A, 08, B8, 8E, D1, 81, 00, E8, F1, 06, 00, 00, FF, 75, 08, 83, 65, FC, 00, E8, 26, F4, FF, FF, 59, 89, 45, EC, 8B, 45, EC, E8, 7E, 07, 00, 00, C3, 83...
 
[+]

Entropy:
7.1474

Code size:
4.2 MB (4,406,784 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
MediaGet2

Command:
C:\users\{user}\appdata\local\mediaget2\mediaget.exe --minimized


The file mediaget.exe has been discovered within the following program.

MediaGet  by Media Get LLC
MediaGet is a P2P program that allows you to download and share torrent files. MediaGet has a search system organized by categories like movies, games, music, and programs that make it easier to find files.
mediaget.com
41% remove it
 
Powered by Should I Remove It?

The file mediaget.exe has been seen being distributed by the following URL.

http://serv11.boxca.com/files/7/.../mediaget.exe

Remove mediaget.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.