home

simtractor.exe

The application simtractor.exe has been detected as a potentially unwanted program by 3 anti-malware scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from liversity.net.
MD5:
3cc20028645ff9e1349b89804ca0c3e6

SHA-1:
38174ab52d07ab5cef724b973dd2446bb201b397

SHA-256:
2ea3d7781c66370104ac547163c02a5a68ef08d6a00572d789e630d0a54d8902

Scanner detections:
3 / 68

Status:
Potentially unwanted

Analysis date:
5/8/2024 1:42:06 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:MultiPlug-ID [PUP]
160518-2

AVG
Adware Generic_r.UH
2015.0.4604

Reason Heuristics
PUP.Bundler (M)
16.9.7.13

File size:
899.3 KB (920,880 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\simtractor.exe

File PE Metadata
Compilation timestamp:
2/1/2012 9:10:47 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
24576:DPbNfgKZIcCv5ELgZsYzcuXlh7Io+NYORQWYA:DbNo9WGsY7XlhUo+NjCXA

Entry address:
0x14902

Entry point:
00, 00, 59, 59, A3, C0, 8F, 46, 00, 85, C0, 75, 05, 6A, 1A, 58, 5E, C3, 33, D2, B9, D0, E2, 41, 00, 89, 0C, 02, 83, C1, 20, 8D, 52, 04, 81, F9, 50, E5, 41, 00, 7D, 07, A1, C0, 8F, 46, 00, EB, E8, 33, C0, 5E, C3, E8, 07, 0E, 00, 00, 80, 3D, 68, 80, 46, 00, 00, 74, 05, E8, AC, 4F, 00, 00, FF, 35, C0, 8F, 46, 00, E8, 52, E7, FF, FF, 83, 25, C0, 8F, 46, 00, 00, 59, C3, B8, D0, E2, 41, 00, C3, 55, 8B, EC, 56, 8B, 75, 08, B9, D0, E2, 41, 00, 3B, F1, 72, 22, 81, FE, 30, E5, 41, 00, 77, 1A, 8B, C6, 2B, C1, C1, F8...
 
[+]

Code size:
115 KB (117,760 bytes)

The file simtractor.exe has been seen being distributed by the following URL.

http://liversity.net/v2612?product_name=SimTractor 4.107&filesize=204967 KB&product_title=Descargar SimTractor&installer_file_name=simtractor&product_file_name=SimTractor_41DX.exe&reffer=http://www.programas-gratis.net&Locale=ES&product_download_url=http://www.simtractor.com/.../SimTractor_41DX.exe

Remove simtractor.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.