home

pacman.exe

The Netwizzy Company SL

The application pacman.exe by The Netwizzy Company SL has been detected as a potentially unwanted program by 29 anti-malware scanners. The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer.
Publisher:
The Netwizzy Company SL  (signed and verified)

MD5:
a09e158caf08fd115697d01aec1cce98

SHA-1:
1d1ec316f3f9fa58f5ede046f2f2f196d95c092f

SHA-256:
e3c976c3313a3483cb58f172e024782700d78ae72330a52aa6e0aef7d18b8f34

Scanner detections:
29 / 68

Status:
Potentially unwanted

Analysis date:
4/19/2024 11:55:59 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Adware.Hotbar.1
414

Agnitum Outpost
Adware.Hotbar
7.1.1

Avira AntiVirus
ADSPY/AdSpy.Gen2
7.11.160.254

avast!
Win32:HotBar-AV [PUP]
2014.9-151218

AVG
Skodna.Generic_r
2016.0.2892

Bitdefender
Gen:Variant.Adware.Hotbar.1
1.0.20.1760

Comodo Security
ApplicUnwnt.Win32.AdWare.HotBar.DG
18866

Dr.Web
Trojan.DownLoad2.16001
9.0.1.0352

Emsisoft Anti-Malware
Gen:Variant.Adware.HotBar
8.15.12.18.12

Fortinet FortiGate
Adware/PlatriumSA
12/18/2015

F-Prot
W32/HotBar.K.gen
v6.4.7.1.166

F-Secure
Gen:Variant.Adware.HotBar.4
11.2015-18-12_6

G Data
Gen:Variant.Adware.Hotbar
15.12.24

IKARUS anti.virus
not-a-virus:WebToolbar.Win32.Zango
t3scan.1.6.1.0

K7 AntiVirus
Adware
13.180.12733

Kaspersky
not-a-virus:WebToolbar.Win32.Zango
14.0.0.955

McAfee
Artemis!A09E158CAF08
5600.6548

Microsoft Security Essentials
Adware:Win32/Hotbar
1.10802

MicroWorld eScan
Gen:Variant.Adware.Hotbar.1
16.0.0.1056

NANO AntiVirus
Riskware.Win32.Zango.raecb
0.28.2.60881

Norman
Suspicious_Gen2.BWMPB
11.20151218

Qihoo 360 Security
Win32/Trojan.Adware.39e
1.0.0.1015

Quick Heal
Adware.HotBar
12.15.14.00

Rising Antivirus
PE:Trojan.Win32.Fednu.tuf!1075350037
23.00.65.151216

Sophos
Hotbar-Installer
4.98

Trend Micro House Call
TROJ_GEN.USEGB28
7.2.352

Trend Micro
TROJ_GEN.USEGB28
10.465.18

Vba32 AntiVirus
Signed-Adware.Hotbar
3.12.26.3

VIPRE Antivirus
Pinball Corporation.
31316

File size:
304.4 KB (311,736 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Common path:
C:\users\{user}\downloads\pacman.exe

Digital Signature
Signed by:
The Netwizzy Company SL

Authority:
GoDaddy.com, Inc.

Valid from:
5/10/2010 8:36:31 AM

Valid to:
5/10/2011 7:03:11 AM

Subject:
CN=The Netwizzy Company SL, O=The Netwizzy Company SL, L=Valencia, S=Valencia, C=ES

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
760AA8B23898

File PE Metadata
Compilation timestamp:
12/5/2009 2:50:41 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6144:2Qq4MlP3Ng0pdoslbbZ6vuzh/jMrlhAK7f7fjtiti5bk624Fp8S5Iyn5Sh:clP36OoMZc27QbAKbzpiti5xTv58h

Entry address:
0x30CB

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 38, 3F, 42, 00, E8, F1, 2B, 00, 00, A3, 84, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 30, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 80, 36, 42, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, 92, 28, 00, 00...
 
[+]

Entropy:
7.9415

Packer / compiler:
Nullsoft install system v2.x

Code size:
22.5 KB (23,040 bytes)

Remove pacman.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.