home

the.big.bang.theory.s07e...dtv.x264-lol.torrent.exe

SuperCharging

Maxiget Limited

This is part of a bundled installer which provides applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed with minimal consent. The application the.big.bang.theory.s07e...dtv.x264-lol.torrent.exe by Maxiget Limited has been detected as adware by 14 anti-malware scanners. The file has been seen being downloaded from ds123.maxiget.com.
Publisher:
SPC LLC  (signed by Maxiget Limited)

Product:
SuperCharging

Description:
DWD

Version:
3, 3, 17, 0

MD5:
0032014b012dfd350d35afe80316b696

SHA-1:
f59a344e7495448d9533e916707c35ef6dd8b5fb

SHA-256:
4dd5f110ca1b7985aaad418c722e8802ac76d938696bd636d1893f2b4effdaa4

Scanner detections:
14 / 68

Status:
Adware

Explanation:
This is a modified installer version of the software and bundles additional offers including adware.

Analysis date:
4/26/2024 5:42:02 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
PUA.4Shared
7.1.1

Avira AntiVirus
APPL/Downloader.Gen
7.11.174.78

AVG
Generic
2015.0.3341

ESET NOD32
Win32/4Shared.S potentially unwanted application
8.7.0.302.0

F-Prot
W32/A-1f3d25ca
v6.4.7.1.166

herdProtect (fuzzy)
variant of game.of.thrones.s04e06.h...x264-killers.torrent.exe (Adware)
2014.12.6.20

K7 AntiVirus
Unwanted-Program
13.183.13476

McAfee
Obfosha
5600.6997

NANO AntiVirus
Trojan.Win32.MLW.dcdomp
0.28.2.62286

Reason Heuristics
PUP.MaxigetLimited.g
14.9.24.19

Sophos
4Share Downloader
4.98

Vba32 AntiVirus
Downloader.GetFaster
3.12.26.3

VIPRE Antivirus
Threat.4150696
32938

Zillya! Antivirus
Backdoor.PePatch.Win32.40003
2.0.0.1930

File size:
479.2 KB (490,672 bytes)

Product version:
3, 3, 17, 0

Copyright:
2013

Trademarks:
-

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\the.big.bang.theory.s07e...dtv.x264-lol.torrent.exe

Digital Signature
Signed by:
Maxiget Limited

Authority:
GoDaddy.com, Inc.

Valid from:
8/15/2013 7:41:32 AM

Valid to:
8/15/2016 7:41:32 AM

Subject:
CN=Maxiget Limited, O=Maxiget Limited, L=Limassol, S=Cyprus, C=CY

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
045BA815265145

File PE Metadata
Compilation timestamp:
4/17/2014 5:26:16 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:hneADuJuYPG6g3uFLnd2wSFfJUQwhinV26tKkJZXnM1c3JAtbl2:hndDahG6g3I2wWfqrhiV2+LXM1WA18

Entry address:
0x29944

Entry point:
E8, 54, 98, 00, 00, E9, 78, FE, FF, FF, CC, CC, 8B, 4C, 24, 04, F7, C1, 03, 00, 00, 00, 74, 24, 8A, 01, 83, C1, 01, 84, C0, 74, 4E, F7, C1, 03, 00, 00, 00, 75, EF, 05, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8B, 01, BA, FF, FE, FE, 7E, 03, D0, 83, F0, FF, 33, C2, 83, C1, 04, A9, 00, 01, 01, 81, 74, E8, 8B, 41, FC, 84, C0, 74, 32, 84, E4, 74, 24, A9, 00, 00, FF, 00, 74, 13, A9, 00, 00, 00, FF, 74, 02, EB, CD, 8D, 41, FF, 8B, 4C, 24, 04, 2B, C1, C3, 8D, 41, FE, 8B, 4C, 24, 04...
 
[+]

Entropy:
6.5671

Code size:
316 KB (323,584 bytes)

The file the.big.bang.theory.s07e...dtv.x264-lol.torrent.exe has been seen being distributed by the following URL.

http://ds123.maxiget.com/.../The.Big.Bang.Theory.S07E...DTV.x264-LOL.torrent.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.