packstadiumsvestarlensilvapartrar__15047_i1611388223_il3287075.exe.rar
The file packstadiumsvestarlensilvapartrar__15047_i1611388223_il3287075.exe.rar has been detected as a potentially unwanted program by 18 anti-malware scanners. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install. The file has been seen being downloaded from b.china-gold.link.
File name:
packstadiumsvestarlensilvapartrar__15047_i1611388223_il3287075.exe.rar
MD5:
621c0aefb02c4ae46606fef4e216149c
SHA-1:
ac554e913aaa8314c1e6fa9ab241ecb73b918e22
SHA-256:
56d25a1def6407553739a3f8e0c227a85f9d6e90c793ad89e6404af151e29207
Scanner detections:
18 / 68
Status:
Potentially unwanted
Analysis date:
4/25/2024 12:12:51 AM UTC (today)
Scan engine
Detection
Engine version
Avira AntiVirus
ADWARE/Amonetize.kpb
8.3.2.2
Arcabit
PUP.Adware.Amonetize.eap
1.0.0.425
Baidu Antivirus
PUA.Win32.Amonetize
4.0.3.1591
Bkav FE
W32.HfsAdware
1.3.0.6979
Dr.Web
infected with Trojan.Amonetize.4075
9.0.1.05190
ESET NOD32
Win32/Amonetize.HR potentially unwanted application
7.0.302.0
Fortinet FortiGate
Adware/Amonetize
9/1/2015
G Data
Win32.Application.Agent.59HOUP
15.9.25
K7 AntiVirus
Unwanted-Program
13.2017075
Kaspersky
not-a-virus:AdWare.Win32.Amonetize
15.0.0.543
McAfee
Artemis!4BA61539DE5E
5600.6655
NANO AntiVirus
Riskware.Win32.Amonetize.dvvlax
0.30.24.3283
Panda Antivirus
Generic Suspicious
15.09.01.04
Qihoo 360 Security
HEUR/QVM10.1.Malware.Gen
1.0.0.1015
Sophos
Generic PUA LB (PUA)
4.98
Vba32 AntiVirus
Signed-AdWare.Amonetize
3.12.26.4
VIPRE Antivirus
Amonetize
43378
File size:
655 KB (670,766 bytes)
Common path:
C:\users\{user}\downloads\packstadiumsvestarlensilvapartrar__15047_i1611388223_il3287075.exe.rar
The file packstadiumsvestarlensilvapartrar__15047_i1611388223_il3287075.exe.rar has been seen being distributed by the following URL.