» super-cinema-4d- torrentino.exe
Overview
Analysis
File Details
Downloads (1)

super-cinema-4d- torrentino.exe

Installer Plugin

Alexander Roshal

The application super-cinema-4d- torrentino.exe has been detected as a potentially unwanted program by 11 anti-malware scanners. This is a setup and installation application, however the file is not signed with an authenticode signature from a trusted source. The file has been seen being downloaded from dlc.info-appstore.ru.

File name:

Publisher:

Alexander Roshal

Product:

Installer Plugin

Version:

3.92.0

MD5:

c8d452164eaaed569450923b8a0c48e4

SHA-1:

369efc50156e0f921b3009f12fe1a9a70d1126fe

SHA-256:

4285eb93e71779885a7fbc420fb714c2676c8e6995a9d80b15a182a75972ef2e

Scanner detections:

11 / 68

Status:

Potentially unwanted

Analysis date:

4/25/2024 8:43:10 AM UTC (today)

Scan engine

Detection

Engine version

AhnLab V3 Security

PUP/Win32.LoadMoney

2014.08.30

Avira AntiVirus

APPL/Downloader.Gen7

7.11.169.242

avast!

Win32:Installer-U [PUP]

140813-1

AVG

Win32/Cryptor

2014.0.4015

Bkav FE

HW32.CDB

1.3.0.4959

Comodo Security

Application.Win32.LoadMoney.SD

19353

ESET NOD32

Win32/AdWare.LoadMoney.SW

8.10336

McAfee

Packed-BY

5600.7023

Rising Antivirus

PE:Malware.XPACK-HIE/Heur!1.9C48

23.00.65.14827

Vba32 AntiVirus

Malware-Cryptor.Limpopo

3.12.26.3

VIPRE Antivirus

Threat.4657539

32210

File size:

535 KB (547,840 bytes)

Original file name:

Installer Plugin.exe

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

6/20/1992 1:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

12288:qM4AmzJnoQB9vykhno/8ZwG33dw5iRzR:GDR/nCQwyOUR

Entry address:

0x109C

Entry point:

83, 3D, 2C, A0, 47, 00, 01, 75, 14, 89, 54, 24, EE, 89, 3D, 4A, A0, 47, 00, C7, 05, C5, A0, 47, 00, 22, 39, 01, 00, E9, CE, 83, 07, 00, C3, 90, FF, 25, 24, A0, 47, 00, B8, 00, 10, 40, 00, C3, 55, 8B, EC, 83, C4, 98, 89, 45, FC, 66, C7, 05, 9D, A0, 47, 00, 4C, C6, 89, 1D, BE, A0, 47, 00, 8B, 44, 24, 08, 31, C0, 8B, 75, FC, 31, C9, 83, 6D, FC, 1E, 03, 4D, FC, 89, 05, 14, A0, 47, 00, 89, 4D, FC, C7, 05, 5C, A0, 47, 00, F0, 12, 01, 00, 89, 15, 1E, A0, 47, 00, 84, DB, 75, 18, 89, 0D, 49, A0, 47, 00, 89, 3D, 1F... 
[+]

Code size:

483 KB (494,592 bytes)

The file super-cinema-4d- torrentino.exe has been seen being distributed by the following URL.

http://dlc.info-appstore.ru/download/93/5/vn5PL27bfz6OnupY OxMzWxsPUhtDF3t7Bwc7U19vf0djXxdPczpXOyJHYpbWdqbeqqPi7vaj2 OuqprTs4 Ph5 Dl4eHu6Pq4pqu/.../super-cinema-4d-_torrentino.exe

Remove super-cinema-4d- torrentino.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.