» mediaget_id2634304id.exe
Overview
Analysis
File Details
Downloads (32)
Network (1)

mediaget_id2634304id.exe

mediaget-installer Module

Media Get LLC

The application mediaget_id2634304id.exe, “MediaGet installer” by Media Get has been detected as a potentially unwanted program by 14 anti-malware scanners. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. The file has been seen being downloaded from ld.mediaget.com and multiple other hosts. While running, it connects to the Internet address sw90.ua-hosting.company on port 80 using the HTTP protocol.

File name:

Publisher:

MediaGet LLC (signed by Media Get LLC)

Product:

mediaget-installer Module

Description:

MediaGet installer

Version:

1.0

MD5:

7715b48f08556d5ed6bef284dd1fcebc

SHA-1:

6420ed47b8d7acc345bc76d19810868c458494c7

SHA-256:

a47d3698fade976201041e861116da1a1c5ac4ba9583222fe180ba738f0c062f

Scanner detections:

14 / 68

Status:

Potentially unwanted

Analysis date:

4/18/2024 11:55:50 PM UTC (a few moments ago)

Scan engine

Detection

Engine version

AhnLab V3 Security

Win-Trojan/Agent3.K.741664.V

2013.12.28

Avira AntiVirus

APPL/MediaGet.Gen5

7.11.122.108

avast!

Win32:PUP-gen [PUP]

2014.9-131219

AVG

Luhe.MediaGet.B

2014.0.3621

Bkav FE

W32.Clod685.Trojan

1.3.0.4613

ESET NOD32

Win32/MediaGet (variant)

7.9190

F-Prot

W32/MediaGet.A.gen

v6.4.7.1.166

G Data

Win32.Adware.MediaGet

13.12.22

K7 AntiVirus

Trojan

13.174.10656

Kaspersky

not-a-virus:HEUR:Downloader.Win32.MediaGet

14.0.0.4598

Malwarebytes

PUP.Adware.MediaGet

v2013.12.19.11

MicroWorld eScan

APPL/MediaGet.Gen5

14.0.0.1059

Reason Heuristics

Optional.MediaGetApp.Installer.MediaGet.U

14.3.2.11

Sophos

MediaGet

4.96

File size:

724.3 KB (741,664 bytes)

Product version:

1.0

Original file name:

mediaget-installer.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\mediaget_id2634304id.exe

Digital Signature

Signed by:

Media Get LLC

Authority:

The USERTRUST Network

Valid from:

3/8/2011 9:00:00 PM

Valid to:

3/8/2014 8:59:59 PM

Subject:

CN=Media Get LLC, O=Media Get LLC, STREET=Sadovaya 53, L=Saint-Petersburg, S=Russia, PostalCode=190344, C=RU

Issuer:

CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:

71D26D579AEE6A768F27CF3B6D4E9A91

File PE Metadata

Compilation timestamp:

2/26/2013 11:46:30 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

12288:sRHlvEmO+osNNPSUf6kd/HgsseMeTy6xNOMfh33sUn6pxeTfpPhF0sHGIp8//:CvEmrxzSkd/HgssheXh33mupJF0sXs/

Entry address:

0x1740C0

Entry point:

60, BE, 00, C0, 51, 00, 8D, BE, 00, 50, EE, FF, 57, EB, 0B, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89, C5, EB, 0B, 01, DB, 75, 07, 8B... 
[+]

Packer / compiler:

UPX v0.89.6 - v1.02 / v1.05 -v1.24

Code size:

356 KB (364,544 bytes)

The file mediaget_id2634304id.exe has been seen being distributed by the following 32 URLs.

http://ld.mediaget.com/index2.php?l=pt&r=casadosfilmex.net&f=gta-vice-city-pc-completo-crack-grtis&s=GTA Vice City PC Completo Crack Grátis

http://ld.mediaget.com/index2.php?l=es&r=malvin.tv&f=cementerio-de-mascotas-2-1992-online-latino-castellano-subtitulado&s=Cementerio de Mascotas 2 (1992) Online - Latino, Castellano, Subtitulado

http://ld.mediaget.com/index2.php?l=es&f=desde-mi-cielo-2009-online-latino-castellano-subtitulado&s=Desde mi Cielo (2009) Online - Latino, Castellano, Subtitulado&r=malvin.tv_p

http://ld.mediaget.com/index2.php?l=es&f=en-busca-de-un-sueo-720p-hd-espaol-latino-dual&s=En Busca de un Sueño 720p HD Español Latino Dual&r=compucalitv.com_p

http://ld.mediaget.com/index2.php?l=es&f=bsqueda-implacable-2-dvdrip-espaol-latino-pelcula-2012&s=Búsqueda Implacable 2 DVDRip Español Latino Película 2012&r=compucalitv.com_p

http://ld.mediaget.com/index2.php?l=es&f=upside-down&s=Upside Down&r=moviezet.com_p

http://ld.mediaget.com/index2.php?l=es&f=slender-pc-full-espaol-descargar-1-link&s=Slender PC Full Español Descargar 1 Link&r=compucalitv.com_p

http://ld.mediaget.com/index2.php?l=es&r=downtwarez.com&f=descargar-windows-7-loader-gratis&s=Descargar Windows 7 Loader Gratis

http://ld.mediaget.com/index2.php?l=es&f=nios-grandes-dvdrip-descargar-espaol-latino-1-link-2010&s=Niños Grandes DVDRip Descargar Español Latino 1 Link 2010&r=compucalitv.com_p

http://ld.mediaget.com/index2.php?l=ru&r=torrentom.com

http://ld.mediaget.com/index2.php?l=es&f=mi-novio-es-un-zombie-2013-online-latino-castellano-subtitulado&s=Mi Novio Es Un Zombie (2013) Online - Latino, Castellano, Subtitulado&r=malvin.tv_p

http://ld.mediaget.com/index2.php?l=ru&u=http://www.fast-torrent.ru/.../&r=fasttorrent&f=fun

http://ld.mediaget.com/index2.php?l=ru&r=games-archive.net&f=amnesia-the-dark-descent-amneziya-prizrak-proshlogo-skachat-besplatno&s=Amnesia: The dark Descent (??????? ??????? ????????) ??????? ????????

http://ld.mediaget.com/index2.php?l=ru&r=cwer&f=morhuhn-krylatye-gonki&s=???????. ???????? ????

http://ld.mediaget.com/index2.php?l=es&f=pro-evolution-soccer-2013-pes-13-pc-full-espaol-descargar&s=Pro Evolution Soccer 2013 PES 13 PC Full Español Descargar&r=compucalitv.com_p

http://ld.mediaget.com/index2.php?l=en&r=downvids.net&f=tucker-trichy-official-trichy-anthem-i-love-trichy-&s=TUCKER TRICHY - OFFICIAL TRICHY ANTHEM ( I LOVE TRICHY)

http://ld.mediaget.com/index2.php?l=ru&u=evrl.to/storage/355693/&r=vtorrente&f=vvs_atlantida_konec_mira_rozhdenie_legendy_/.../_2011_hdrip

http://ld.mediaget.com/index2.php?l=pt&r=assistirfilmesnanet.com&f=filme_online_–_toy_story_2_dublado_«_assistir__–_baixar_gratís_–_download&s=Filme Online – Toy Story 2 (Dublado) « Assistir – Baixar Gratís – Download

http://ld.mediaget.com/index2.php?l=es&r=keygens.nl&f=easyarchiverecovery20cracked-snd&s=Easy.Archive.Recovery.2.0.cracked-SND

http://ld.mediaget.com/index2.php?l=es&f=ver-the-visitor-2007-online-latino-castellano-subtitulado&s=Ver The Visitor (2007) Online - Latino, Castellano, Subtitulado&r=malvin.tv_p

http://ld.mediaget.com/index2.php?l=en&r=downvids.net&f=download-facebook-videos&s=Download Facebook Videos

http://ld.mediaget.com/index2.php?l=pt&r=baixar-jogos-completos.blogspot.com.br&f=dirt-3-pc-&s=Dirt 3 - PC

http://ld.mediaget.com/index2.php?l=es&r=gratisnovelas.com&f=amores-daderos-147&s=Amores daderos 147

http://ld.mediaget.com/index2.php?l=ru&r=mguser_333787&f=crysis-3-deluxe-edition-2013rusrip&s=Crysis 3: Deluxe Edition (2013/.../Rip)

http://ld.mediaget.com/index2.php?l=tr&fu=http://gamesdownloads.terra.com.br/aberto/fifa07/pc_fifa07_demo.zip&r=indiroyunu.com&f=fifa2007install&p=http://cdn.pocket-lint.com/images/.../ea-fifa-07-football-game-0.jpg?20110712-094532

http://ld.mediaget.com/index2.php?l=en&r=torrentbit.net&f=torrentbitnet-pc-impossible-creatures-all-updates-all-expansions-torrent-download&s=Torrentbit.net - PC Impossible Creatures All Updates All Expansions. torrent download

http://mediaget.com/torrent.php?r=torrentbit.net&s=Torrentbit.net - PC Impossible Creatures All Updates All Expansions. torrent download&f=Torrentbit.net - PC Impossible Creatures All Updates All Expansions. torrent download&cs=UTF-8

http://ld.mediaget.com/index2.php?l=nl&r=torrentbit.net&f=torrentbitnet-de-vijf-legendes-2012-dvdrip-xvid-nl-gespr-dmt-torrent-download&s=Torrentbit.net - De Vijf Legendes (2012) DVDrip (xvid) NL Gespr DMT torrent download

http://mediaget.com/torrent.php?r=torrentbit.net&s=Torrentbit.net - De Vijf Legendes (2012) DVDrip (xvid) NL Gespr DMT torrent download&f=Torrentbit.net - De Vijf Legendes (2012) DVDrip (xvid) NL Gespr DMT torrent download&cs=UTF-8

http://mediaget.com/torrent.php?r=torrentbit.net&s=Torrentbit.net - Ritorno a Cold Mountain (2003)[XviD - Ita Ac3] MIRCrew [TNT Village] torrent download&f=Torrentbit.net - Ritorno a Cold Mountain (2003)[XviD - Ita Ac3] MIRCrew [TNT Village] torrent download&cs=UTF-8

Latest 30 of 32 download URLs

The executing file has been seen to make the following network communication in live environments.

TCP (HTTP):

Connects to sw90.ua-hosting.company (91.215.156.143:80)

Remove mediaget_id2634304id.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.