» tandem (the many worlds trilogy, #1) - anna jarzab.epub.exe
Overview
Analysis
File Details

tandem (the many worlds trilogy, #1) - anna jarzab.epub.exe

Stanislav Kabin

The is the installer for the WebPick InstalleRex download manager which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed without consent. The application tandem (the many worlds trilogy, #1) - anna jarzab.epub.exe by Stanislav Kabin has been detected as adware by 22 anti-malware scanners.

File name:

Publisher:

Stanislav Kabin (signed and verified)

MD5:

451b07394fa691902970ec700b0aa8e0

SHA-1:

91ebc989858cac521ac6d0cfc008513f1d52c966

SHA-256:

898df8ecf0e62c114e9831ea7e381ae0c31dcb7f57ea9c919f6ab49dbaa691f6

Scanner detections:

22 / 68

Status:

Adware

Analysis date:

4/25/2024 5:08:37 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Adware.Mplug.30

6561816

AhnLab V3 Security

PUP/Win32.MultiPlug

2015.02.28

Avira AntiVirus

PUA/Multiplug.aoa

7.11.212.228

avast!

Win32:MultiPlug-TC [PUP]

150129-1

AVG

Generic6

2016.0.3185

Bitdefender

Gen:Variant.Adware.Mplug.30

1.0.20.290

Bkav FE

W32.HfsAdware

1.3.0.6379

Comodo Security

Application.Win32.AdWare.MultiPlug.VA

21235

Emsisoft Anti-Malware

Gen:Variant.Adware.Mplug.30

9.0.0.4799

ESET NOD32

Win32/Adware.MultiPlug.EP application

7.0.302.0

F-Prot

W32/S-7d1b6c10

v6.4.7.1.166

F-Secure

Gen:Variant.Adware.Mplug.30

5.13.68

G Data

Gen:Variant.Adware.Mplug.30

15.2.25

K7 AntiVirus

Unwanted-Program

13.1915113

Kaspersky

not-a-virus:AdWare.Win32.MultiPlug

15.0.0.543

McAfee

Program.MultiPlug-FVH

16.8.708.2

MicroWorld eScan

Gen:Variant.Adware.Mplug.30

16.0.0.174

NANO AntiVirus

Trojan.Win32.Badur.dnqcnf

0.30.0.296

Panda Antivirus

PUP/TSUploader

15.02.27.09

Reason Heuristics

PUP.StanislavKabin

15.2.27.21

Sophos

PUA 'MultiPlug' (of type Adware)

5.11

VIPRE Antivirus

Threat.4753027

37588

File size:

1.1 MB (1,190,776 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\ProgramData\{e4068b75-9172-f67e-e406-68b759172dd6}\tandem (the many worlds trilogy, #1) - anna jarzab.epub.exe

Digital Signature

Signed by:

Stanislav Kabin

Authority:

Unizeto Technologies S.A.

Valid from:

6/23/2014 6:28:15 AM

Valid to:

6/23/2015 6:28:15 AM

Subject:

E=Stanislav.Kabin@hotmail.com, CN=Stanislav Kabin, O=Stanislav Kabin, C=RU

Issuer:

CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:

3469022839E88D596EA6FE14C990AF76

File PE Metadata

Compilation timestamp:

6/15/2012 9:12:51 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

24576:sTeXZyd57x0qYDGbg3O04zsDoFQahn4yuvlvdMrtJZYo:uld57xaDUge0n4Xn4tvlVSSo

Entry address:

0x258EB

Entry point:

E8, 8C, 36, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, F0, 6E, 50, 00, E8, BF, 0E, 00, 00, E8, 59, 38, 00, 00, 0F, B7, F0, 6A, 02, E8, 1F, 36, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, 2B, 07, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8... 
[+]

Entropy:

7.3428

Code size:

387 KB (396,288 bytes)

Remove tandem (the many worlds trilogy, #1) - anna jarzab.epub.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.