» mhotspot_setup.exe
Overview
Analysis
File Details
Downloads (51)

mhotspot_setup.exe

mHotspot

1BN Software & IT Solutions Private Limited

The application mhotspot_setup.exe, “mHotspot Setup ” by 1BN Software & IT Solutions Private Limited has been detected as a potentially unwanted program by 13 anti-malware scanners. The program is a setup application that uses the Inno Setup installer. The installer uses the OpenCandy monitzation platform which will donwload and install offers in the setup for potentially unwanted software including ad/search-supported toolbars. The file has been seen being downloaded from downloader.disk.yandex.ru and multiple other hosts.

File name:

mhotspot_setup.exe

Publisher:

1BN Software & IT Solutions Pvt. Ltd. (signed by 1BN Software & IT Solutions Private Limited)

Product:

mHotspot

Description:

mHotspot Setup

Version:

7.8.4.0

MD5:

84e1e625298a1a228ecd9c8a9d3bf54c

SHA-1:

cc9a0254fa4a1b684357b8c1e3dc7cfd82a887b1

SHA-256:

d14a864e34e7641d1fdd2cf0e21fd411bfee010e38672fba1a20d69cd041f016

Scanner detections:

13 / 68

Status:

Potentially unwanted

Explanation:

Packages the OpenCandy software bundler that offers to install additional software and may include web browser add-ons and toolbars which display advertising (based on publisher settings and geo context).

Analysis date:

5/21/2024 11:38:54 AM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Riskware.Agent

7.1.1

avast!

Win32:Adware-gen [Adw]

2014.9-150815

AVG

OpenCandy

2016.0.3017

Baidu Antivirus

Adware.Win32.OpenCandy

4.0.3.15815

Dr.Web

Adware.OpenCandy.137

9.0.1.0227

ESET NOD32

Win32/OpenCandy.A potentially unsafe application

8.0.319.0

G Data

Win32.Application.OpenCandy

15.8.25

K7 AntiVirus

Unwanted-Program

13.2016899

Kaspersky

not-a-virus:AdWare.Win32.OpenCandy

15.0.0.562

Qihoo 360 Security

HEUR/QVM42.1.Malware.Gen

1.0.0.1015

Reason Heuristics

PUP.OpenCandy.Installer (L)

15.8.15.7

Sophos

PUA 'OpenCandy'

5.23

VIPRE Antivirus

Threat.4150696

48132

File size:

811.8 KB (831,304 bytes)

Product version:

7.8.4.0

File type:

Executable application (Win32 EXE)

Installer:

Inno Setup

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\mhotspot_setup.exe

Digital Signature

Signed by:

1BN Software & IT Solutions Private Limited

Authority:

GoDaddy.com, Inc.

Valid from:

8/13/2015 8:04:38 PM

Valid to:

8/13/2016 8:04:38 PM

Subject:

CN=1BN Software & IT Solutions Private Limited, O=1BN Software & IT Solutions Private Limited, L=Pamuru, S=Andhra Pradesh, C=IN

Issuer:

CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:

3BFA397D02F43242

File PE Metadata

Compilation timestamp:

6/20/1992 3:52:17 AM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:rQig/1yQv8TdTwJ167pFDPq6kMBTlP0QjcpMXVJoA:r9mnkTwi7plPq6kGpfF

Entry address:

0xA5F8

Entry point:

55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, CE, 8A, FF, FF, E8, D5, 9C, FF, FF, E8, 64, 9F, FF, FF, E8, 07, A0, FF, FF, E8, A6, BF, FF, FF, E8, 11, E9, FF, FF, E8, 78, EA, FF, FF, 33, C0, 55, 68, C9, AC, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 92, AC, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, B2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, C4, 97, FF, FF, 8D, 55, F0, 33, C0, E8, B6, C5, FF, FF, 8B, 55... 
[+]

Entropy:

7.9731

Packer / compiler:

Inno Setup v5.x - Installer Maker

Code size:

39.5 KB (40,448 bytes)

The file mhotspot_setup.exe has been seen being distributed by the following 50 URLs.

https://downloader.disk.yandex.ru/disk/caf0af5ab3ed01617aca96ee0bb8ef5b4d0d33fec895d50f59f1a2fad2104683/588390a5/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://downloader.disk.yandex.ru/disk/7522ce22e9518bc418f2435d047afc92dd3d8afd3725058c25aa9a0dae424633/58273152/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://downloader.disk.yandex.ua/disk/2cdeefb77a4088786db398076e95cb2e8123019987c484e58a66a1d3c43427bf/5891089e/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://downloader.disk.yandex.ua/disk/6ac47011332142294b6231f95a6214d844831afb3fa28357612107ba541cbc55/588d522b/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://downloader.disk.yandex.ua/disk/7b7b024f29c03e0cfe58abb194b9ca92e3586d1abd4160761406f23eb96ecc38/58869b54/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://downloader.disk.yandex.ru/disk/958c2faf7a07a086dccf2cc106f70b9e6aa61ca0ac64fcb19474a6ef90172565/5771ce37/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://downloader.disk.yandex.ua/disk/f661a444059c603f525da22dcbf9a05711bee2177f88a4d1d7bfce462d2bedad/57f7a6f0/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://ph2dvx.oloadcdn.net/dl/l/akwajGb9NnY/.../mHotspot_setup by VINODWEB4U.exe

https://downloader.disk.yandex.ru/disk/8dbff7a922600bb421a723707c8369e6670b0b740315d41e6cf35fd75f6e67fe/57c5e810/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://zima139h.storage.yandex.net/rdisk/6a65cbd167962b34207a055c6b2f636d50bc666a2b5ad9a21202d1841b91e933/582e757d/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2&rtoken=No1E3oByh3xG&force_default=no&ycrid=na-767b6cd34886512bfc09e4ce696c319b-downloader10d

https://downloader.disk.yandex.ua/disk/93a868de58f0d4d0eda2540c8ae8a45eb48348c956736b993ee9f1cb408c6748/5839e51f/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://downloader.disk.yandex.ru/disk/7ba6e25083ef6d56877213801196c70721434552de47fd94e44fffe7a899c2e3/57bb5a1d/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://downloader.disk.yandex.ru/disk/ec5b95211c507a9dcc05bd412a20c4de5abdeade746256542be144810717566f/5810b131/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://zima139h.storage.yandex.net/rdisk/c044fd57b1d4cd72427eb321a47440d8bdb38eec050d9c89d4767f6d32eb4fc2/5824e294/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2&rtoken=iotPa0KUBQSJ&force_default=no&ycrid=na-551163e00c1534cba44bf416846b81c8-downloader10d

https://downloader.disk.yandex.ua/disk/559c0ab13564f8b1245088ce33cf03bd58506eaa2ae2177e0203f628d04262d2/5812757e/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://downloader.disk.yandex.ua/disk/4cbac78a4e302fa123a75f24dc76a0d1173dbfe60b23b3d02f0364de9f65239d/57b5a58f/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://downloader.disk.yandex.ru/disk/8eab5fbdb8120cf39406e7e9f3f47bc318a085ffe085e41a21333cabe6e33be5/58337636/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://mega.nz/persistent/.../kJMzSTaQ

https://downloader.disk.yandex.ua/disk/049e2864c71254b342cf1c3ea09f5e38f7e0f28d73e97e2397c3d2b9f7a83715/58478bb9/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

http://www.techspot.com/downloads/downloadnow/.../?evp=0916bf02c1be30399289b475868dae34&file=1

https://downloader.disk.yandex.ua/disk/bc43fe58bb3e702ebf8938e7578a0d291fd10f8b6fd4c87b96337a6b14e974f6/581e08ee/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://downloader.disk.yandex.ua/disk/563d2d665ece634fb2171f8587d7288255479cbe5924a09c000d593ca9216b31/57deb08d/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://downloader.disk.yandex.com/disk/8863a70c6d94ea3e9c4a06b915cb806a68fdb3c914d9d6334fbf6e2ca1cf8e1b/57b218eb/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

https://downloader.disk.yandex.ua/disk/14d172bdd941b7d4172717b3230a0d12a4533effd87f043dca3dc137472c72b3/57cf0860/Q8DuOHGXvm1_7m-WJn4lVqKTC_iRWEOn8MqRr2qhDIUInpFwxmNogI20U58q8wGyvo1fr3lNk8Bkl5KEYhoLsQ==?uid=0&filename=mHotspot_setup.exe&disposition=attachment&hash=b moyq5sQDsO79aZu2DAt/l6EZSDMXOjrbT/.../x-msdownload&fsize=831304&hid=339d6a1896ea9b131b01a27bcf50be7b&media_type=executable&tknv=v2

http://113.171.224.210/.../mHotspot_setup.exe

http://www.megadlcenter.com/c?x=RjTPPL/U8b7sW5mj5KIKV/EfiKZZSUjv6vunOEgzof0=&c=2ZO847t8dVqmV2NyuUxXJkiXSNiuQnDcy9X855gOuWKfb8yyr2oJTQFLORb4LtKCpvLqe LUcF4aKa2ecv/8/cTwOvF1K21SyMV lp2N0ytAcv5Rcb KvZImO8Q0RCCjBlC0azpMJgAhfdG4dbhq6vIMpPRbmZ9AFUGCM6JOERc=&e=0&downloadAs=mHotspot_setup_7.6.0.0.exe&fallback_url=http://qpdownload.com/data/mhotspot/.../mHotspot_setup_7.6.0.0.exe

http://soft.mydiv.net/win/dlfileddf57_283131/.../mHotspot_setup.exe

https://mail.naver.com/file/download/.../?attachType=normal&mailSN=8424&attachIndex=2&virus=1&domain=mail.naver.com&u=jmn951

http://indir.gezginler.net/i/18870/.../

http://soft.mydiv.net/win/dlfile0db72_283131/.../mHotspot_setup.exe

Latest 30 of 51 download URLs

Remove mhotspot_setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.