» mp3rocket.exe
Overview
Analysis
File Details
Downloads (50)

mp3rocket.exe

MP3 Rocket

MP3 TechSupport LLC

The installer utilizes the installCore download manager which may bundle additional offers for various ad-supported toolbars, extensions and utilities. The application mp3rocket.exe, “MP3 Rocket Setup Program” by MP3 TechSupport has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the installCore installer. The file has been seen being downloaded from www.mp3rocketnowbest.com and multiple other hosts.

File name:

mp3rocket.exe

Publisher:

MP3 Rocket Inc. (signed by MP3 TechSupport LLC)

Product:

MP3 Rocket

Description:

MP3 Rocket Setup Program

Version:

7.3.2

MD5:

5ef324779648dec6790a51efa9b22131

SHA-1:

9ea2726c83c3244f3149463a4c061984b5dd9f93

SHA-256:

46db0d6f6936cdb862250eefb5876ec60c189fb3a6bbc7c8cdecf1e8529fc241

Scanner detections:

1 / 68

Status:

Adware

Note:

Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Description:

This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:

4/26/2024 12:03:27 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.installCore.MP3TechSupport.Installer (M)

16.1.8.9

File size:

1.1 MB (1,127,360 bytes)

Product version:

7.3.2

Original file name:

MP3 RocketSetup.exe

File type:

Executable application (Win32 EXE)

Bundler/Installer:

installCore

Language:

English (United States)

Common path:

C:\users\{user}\downloads\mp3rocket.exe

Digital Signature

Signed by:

MP3 TechSupport LLC

Authority:

Symantec Corporation

Valid from:

4/14/2015 5:00:00 PM

Valid to:

4/14/2017 4:59:59 PM

Subject:

CN=MP3 TechSupport LLC, O=MP3 TechSupport LLC, L=Lehi, S=Utah, C=US

Issuer:

CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

16A1E50EC9A3D10A9B18242160B68883

File PE Metadata

Compilation timestamp:

1/7/2016 8:47:56 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

24576:54y65/C7QEGIdpTAlv5eoGm8Od7tOkGN396b:5SkQdKpT4v5jGQTGN396b

Entry address:

0x57524

Entry point:

E8, 75, 98, 00, 00, E9, 79, FE, FF, FF, CC, CC, 68, 00, 71, 45, 00, 64, FF, 35, 00, 00, 00, 00, 8B, 44, 24, 10, 89, 6C, 24, 10, 8D, 6C, 24, 10, 2B, E0, 53, 56, 57, A1, B8, A2, 49, 00, 31, 45, FC, 33, C5, 50, 89, 65, E8, FF, 75, F8, 8B, 45, FC, C7, 45, FC, FE, FF, FF, FF, 89, 45, F8, 8D, 45, F0, 64, A3, 00, 00, 00, 00, C3, 8B, 4D, F0, 64, 89, 0D, 00, 00, 00, 00, 59, 5F, 5F, 5E, 5B, 8B, E5, 5D, 51, C3, 6A, 0C, 68, 50, 1A, 49, 00, E8, 9B, FF, FF, FF, 6A, 0E, E8, BC, 22, 00, 00, 59, 83, 65, FC, 00, 8B, 75, 08... 
[+]

Entropy:

7.2425

Code size:

500 KB (512,000 bytes)

The file mp3rocket.exe has been seen being distributed by the following 50 URLs.

http://www.mp3rocketnowbest.com/c?x=zKWGlIRxGe2xg7s2IkXtZnU/DlKGXvSHVKElNAYFnEA=&c=8a4YE6Ycg0a7q5fvlGFpGQjefoiaeEMVKrW1KdhE3E DF3XzYSDUD785b1WCtLCASlS5aUf6JpcLtRBDtHJkZyczHZF3PsABFh62FWbNydb09 wJlc1xjUXCRKOUGUYgFWbwLt7FM 2Tj6SxugYxOg==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=3VN5MfGPqN43OLYF0SL5quD0iqAV2i6qC9X2EjAVRdY=&c=9Y1j640 6Wse5w84a cuwm0k50ueemQpUXIiAaEa7qq80JwgrVTHP1WqgybBefpuNlynfKFT3/PMPCCriNAGPRkhua Ek07PPM5NgkIdlh5Oh saTqy0ePilB UlAyB860N21mfyxLsd/3GDEidD ynt/WxbkjnQhI4Twoelp7Y=&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.imusicsearch.com/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=wnq3K0s dd dLjIwVpTa5iHcNtv41iHWRMFmDQYdpwo=&c=Q8wrjv/XCguH/cd/HYZ0TRmP37iRre0hXbg67qXA2hSH3V77j7wqFpiFOK4LCwWRuCFMmp4gAqCIIFKFSZTNfcxoSIF7UTgrnOiH4K438uVi2BKr220AVqytlkThoXL7t7FxFXbq w54rJJj1LVbow==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=3vHPKPVwCsGPEzIqComDxZezaLIc9ZGWPqs0WoB arM=&c=KGp45MCpWwoM6m7Gvu0jF7yktjVG8/RwxnfxASL hYj7BM35V5Mz zZRxLGqbm8bK88fvkXfzisUxb0jUQsZim0azg6PGKcAAdgqOcnjC5Q=&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=I5SnDOUT/Du2ZQeoZ9qf5DicK3IVs 6OSVpm/oXFjio=&c=TeurzN4I2300YAoZ3fFDvrk h2ELKqCQyCiLSFB zxARmwp D1elIK1/SvnzTKjA6bNk1c3kaxu1XfGGkVgeoYLCEPBRWvd2jgzMRKNye/lNKitNZoTJSj4NjMT8I745JpRXnUGOcR7rVptYZzwWog==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=3Elspz7juqjYNQK4y /pvDrf9 okT5lT0cZVG6H8bsw=&c=ak5FDhbf3tQIDEJDhTQVvFCqLpQ2k22bHAS0tjmnoOPGcyD5MTlMmbXLP9nLUdRzLN0FWVL8U4e7b8cBEIMzhvGnS/py4orNWvyzU3HIuWidBnJ7In4QBUXhR3BkqJVIVVVpZ17Z1cO8RcDp46NAyw==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.imusicsearch.com/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=Uae55EYa6s07RX7yCQ06Y/4K GixvIcYtIMfL1YnXDQ=&c=jM8byMbgYLq5Pdv14ZPaundYwMw81nIfPFiCLGtipLeFkJ2qciAsCsbQnFM0i2Q69WJE10XXfgWviOnwI/RvWH/eMxN8dOXc2k3DX J43c5Pvam4QLn5G7Sg XQrfpWvopno 1FFwJoa/PtyemE8Dg==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=vyqLtkXUrtXRA8NQ2Ndn3bbV6YQKV8yVozc1ScWBDi0=&c=zmzWHWi3z9Wk3RpVu110qPvkmfNFDxA2jTaCfZEyWWGsZpsK6C58AKjo q9v0SUrA/0oExVL/4JqGC3I6lfJYd/hjCLbw8Mgf50M52IYicITy95yq9eae2hjYYdQDcQRU zPnHVj9l/rqHwdwOi3Xg==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=AnQD5wafay97EISldVoYKtl3t6dv8wpD5tf1t4pJqzk=&c=thYQs1sMOIib0k2RVQIik LQz67mF9TFnzU2Q9OljX5K3lCONPNdmDvpHBNaamKUAF9m1eI4CtdvJoLts9e2MVt/yVohKxIOjRVqa5un8qffJLEmkyefvmJTeG UQICbFZ1jBoms7qq0b7IM6ukvsg==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.imusicsearch.com/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=8YL4BQrdzFgSB5i3GLw41VAzJmAOAONXZOqO6B7hGFE=&c=sJPU2nQSCYXMSyJ1AxYIi254SSJBdMDuX8w0ZuJWueTj9RLyxCAKM6TUaW8QnmJ2HOr36/mDjds8apRnCLLTr0mxBMFq8NLHwiHt8INmzN6n/IX2VMB7Vi2hRajbq8ND N4yt17WJlnMsmrMfIIeMw==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=av5nv9cGlwzeh9PWXq7kIqOf3ILwGX8t0NlhEFaP28k=&c=JjX rYirB2OzGUcpf3FhjXuHv rZ0yF2eBNuC9qqoWE90a23gzwHXhQ1s3j91f ggnCR Z94YCEhzPLtHkHfDreCjcWeRzDRi0kLzJdKY2R4bwbemmfE3zCdURyAORu2Qjpfw8nSRuQwJqFSLL4xQQ==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.safefiles.com/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=apYxnQzaYGvpPIVCxGComO5LY8aJKXJsUAL42kOjXtg=&c=g5QJ0LUrMtgZ5PdC0/1Nd70uxcnSWfq2YOZSXOMoux a1cQIM0JOSi1GSDMH5UoDy4pXvSxXVYzdIi/fPVDS08kobKUDkKd2Mk1L9TLK2JfJYmtTUXYb8FtmyiINdZNPAoEiK9iBA81u fxJnF47Yw==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=rciKDrVx 28/YgmOsj15MpeV RDlCEJdPcrWpIXpcE0=&c=LsxVtvmuKOOI5HwCK8J5vkpYhyuRAHW7oNXOf45k eR k24ZbLGB8Yw8zyK44QugoaUui80PTaSlmuMn8k KjK1CyxOiwbOzhBAstso237GJHeMdxqHqZg00tQGB1HAKNudXavFGYeKf /9MmzMPAA==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://software-files-a.cnet.com/s/software/14/49/35/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=JYBAZqm7zLpH/NkyjqffpmmZ48VD2gW4EWj9DkwW6b0=&c=HvuG/omtnalTZObPv4XYbnwipkfEFdyRrkANBYXhjIYLRyMNv3adbXU2lr6J6qGjfJbRH0fgSRwgUa1XGlcSsuDjQMdgDReSS xBfnBZqb57cxxDByfOQwGF/quOowuafwvf1XywCVF7q7op6VnvxQ==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.imusicsearch.com/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=cCQM7e0Bk9vIYcfAt264x29nK7JKBxLEpmn37JRgpac=&c=Wh hi 1p4PrXhoJMuBc 5 C9L5jlS2DchjY5ycwxCmk8M/WjV0dh2qwCxrhLWjvE5Uv/E61k3xi7GI2jaloddzC61/DTJkKgq4zb0eLBDl9Q6 sOYrednP/34WvtlTgnnCQe4pPlqlRyL3ncKKlOug==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.imusicsearch.com/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=9xJo4TV3D5NDkwzh33npgf1xW8NXlRYuZPPUVSdv6wc=&c=CMVvBY6xzCbuPlpKKCOOl/icmt3GDpswU/BnRBvpCgSqM3eISUSGE47uODKsFMKL5qlwFC7trAgXtGZWqhAD5G1 JzkhXZAdJT8abHkKRro=&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.imusicsearch.com/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=fCNA75mPD/RgCXxTIUL7/VmyRB 0FdY57HO4Kohzyus=&c=k2kNKlIAs1chiYWvDGPAD95Lp3xZ8I4LfbTz777PeXmbC7tk8RpVGcXPUUEmwXfUhdKrHJ93Et/E4H1sf/1l7Xw5GVP9AtTuPNDombhNeoLJYKI2nYlubaGBmGeFSBpPldgwXvVoW u931QBEkesTw==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=QUlQXQkJmFQFA83/X58E7Xoehv6iN8Pe4umc0f/aCt8=&c=oyKKpxLwIAQq5ExlqoZOyq5p4Bzk2GHOJSzqlAZC0rNZEt5E26BhkpG/nQsIDpCRJ33GLNrTPVTbp5teKyq4oqnxCnEJlTHH /ZGCCsc6IsOKMCmSr3PzmWC/rcpezngHdevuKwxZV0mvmMC3sOhhQ==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=4ly5XLuqPW pmpNFORv11qzPDNLVJrTHzenFtsl4gaE=&c=MPhM8mWyfSPm JjEhmqyhUwAGWPhCiYL8mslnDRLq9z4rbd/bLWmRo0fm3pU/NnKH0/pFZHTke1m17AqgYUpHWk3wQWmjYY8YsquBqdnJ18BGmDXEtVlfA5mLZ43asnbhhda84LHvCp5gyDfr2F0TA==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=lUcUe0YpZsj0eANJXzoq5FytprUUOzgfIBtiRJ7u9iw=&c=n3KJ4zTfcdFhShUjUcuCVOvmel4ATxrWXndjdPQXi7 l6xpXOcF1eQ8NuzXMMl5ocgwoPCjN0xQXWFm2unFTaZZdz9Ib2QqJrVPGkfSHsDL//iZ9ZILA0P83Bn3v0ZnrUpdKLlOio75QvvxB/JjVFA==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.imusicsearch.com/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=TFF5p4LmvK qX0SlKgUda mGOkE9cUtRvI7RefCdpDg=&c=tvpvGi2juGGYoN4 U5msIhXcukE55aYLSmO eDVRki1MoOfwUGs4bwvf QBoE WkjWCniqiddK 9VqBF3R0b0h0ZiVOIgAxKYUqiTB8UoXxhuGqlRI zMKu/2MyEU3mlrC2KzOmGOm5fUllyKFR1wA==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=5Ee8LHztvDIIieKs7wKIARtTv5JEFfdYQbjcqAfy3zI=&c=tMuR3Y6L6ArB9hHmQ1m7whaLOtzwXnN1ysVnYgo hDz/5WUjlYxF6t0N JRui qatcjIgmsLFbw4MnmrRpXCY1nlgRKVZC26CgPMnM1KZeo=&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=z8fBwQOpr5TgqQJa68Gi2s6GprqxLmyCPdRALTDQ1fE=&c=gMLRDhGnoqdcykz7ZOf2LZmHxN64O6Q0DeJ/5Z4TZgo3lplZNSqKxeUy3uoqcvOtFCMfOh3jqpf79J/h1HnIOUMQoR0W5um VMh3uIRNktF572E40ZlP1AqyoEQNVNMGg9q/Dt/SaNzvxvpKkOXZaQ==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=dIx0ClZjBiCTVcJH58lkfZiU6EMEuFNsxqKHAOd9Gb0=&c=uWf5VEvZ79Su7FSFRKJMj0FNofC5DV6BuOfklDUKvhZU dWkudAWXCfqkeIBtP0mj lGhlR/j /pm1rlmBb4xTHCcJ1hHmMLa0/HbBbyjcj0SxeX0vCTKPQ9GePLWp wf4N2f7mopKpEgkepWrA9yQ==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=YrFL y6RRsDszKAMORzbzztHgL0LvKqChXHtepWKeNs=&c=Mq2K8qz1K1AxicDL9jfDxcQhm8p1XACy3tH 1M9nzbM98WEf6eXD2qNuiaXHbSo Z1uiKKnOKmBj77JsjCPwMzMv79DMWm1sHVhjhQNOFc9nNkcdx7xqRbroJ5YkkDuugImWH2lpNQx2V27AdT4uAQ==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://d5.mp3rocket.com/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=F RKIX65HG75IGr98Fh2JRan4LIDqYJ/37KPsn89BEw=&c=pNRl9iM0yTQ8yVHsbdUo8sGeKbQK59x3cC4H7VlKym/APA6lmVxQMXZzR77himqfppkDKXh5HMDYdN0UyZgiAH1WxkclWCbgCCgqr6XuLa4=&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

http://www.mp3rocketnowbest.com/c?x=Uqdv/RvxBaDpBE/ftwf/5Vg8I6n2UUmlnwS1cYG8WNQ=&c=8ppTjqtXmd6 0X3UsGlQ7fu9mbBNMbmfNvQ nPlTSwYW7dQw07Yy7IFltVW2gWyMStxfeCbubxFb5Vww CET4k/Tt818O4LAa50Z6D8FXvmOoxt7plsgZPtY7iWFgvc4bg5YzTybm2vgTBE/8O4FAQ==&downloadAs=MP3Rocket_Setup.exe&fallback_url=http://www.safefiles.net/.../mp3rocket.exe

Latest 30 of 50 download URLs

Remove mp3rocket.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.