» Top 25 Country Songs Of August 2014.mp4.exe
Overview
Analysis
File Details

Top 25 Country Songs Of August 2014.mp4.exe

From Relating

Oleh Aleksyuk

The application Top 25 Country Songs Of August 2014.mp4.exe, “Metasequoia Glyptostrodoides Physical” by Oleh Aleksyuk has been detected as adware by 19 anti-malware scanners. It is built using the Crossrider cross-browser extension toolkit. While the file utilizes the Crossrider framework and delivery services, it is not owned by Crossrider.

File name:

Publisher:

It The (signed by Oleh Aleksyuk)

Product:

From Relating

Description:

Metasequoia Glyptostrodoides Physical

Version:

0.4.5.2

MD5:

f8c31b37142b2f77cec9961f92884823

SHA-1:

e489cf5399b2e53842c042a8ccd68244722bfdb0

SHA-256:

3199c3a59dd8481ab08bb598924f70685042bea593bcc27bc721daf26a716c9c

Scanner detections:

19 / 68

Status:

Adware

Explanation:

The software may change the browser's home page and search provider settings as well as display advertisements.

Analysis date:

4/25/2024 10:36:47 AM UTC (today)

Scan engine

Detection

Engine version

AhnLab V3 Security

PUP/Win32.MultiPlug

2014.11.27

Avira AntiVirus

Adware/MultiPlug.bfp

7.11.189.28

avast!

Win32:MultiPlug-GC [PUP]

141119-1

AVG

Adware Generic5.BRSK

2014.0.4189

Comodo Security

Application.Win32.MultiPlug.PNU

20202

Dr.Web

Trojan.Crossrider.36840

9.0.1.05190

ESET NOD32

Win32/Adware.MultiPlug.DW application

7.0.302.0

F-Prot

W32/A-1123bd76

v6.4.7.1.166

G Data

Win32.Adware.Multiplug

14.11.24

K7 AntiVirus

Unwanted-Program

13.186.14150

Kaspersky

not-a-virus:AdWare.Win32.MultiPlug

15.0.0.543

Malwarebytes

PUP.Optional.Multiplug

v2014.11.26.11

McAfee

MultiPlug-FPF

5600.6934

NANO AntiVirus

Riskware.Win32.MultiPlug.dfjscb

0.28.6.63726

nProtect

Trojan-Clicker/W32.MultiPlug.839024.B

14.11.26.01

Panda Antivirus

PUP/TSUploader

14.11.26.11

Reason Heuristics

PUP.OlehAleksyuk.g

14.11.26.8

Sophos

MultiPlug

4.98

Vba32 AntiVirus

SScope.Adware.MultiPlug

3.12.26.3

File size:

819.4 KB (839,024 bytes)

Product version:

0.1.3.7

Original file name:

Top 25 Country Songs Of August 2014.mp4.exe

File type:

Executable application (Win32 EXE)

Language:

English (United Kingdom)

Common path:

C:\users\{user}\downloads\nov2\nov\oct\september\top 25 country songs of august 2014.mp4.exe

Digital Signature

Signed by:

Oleh Aleksyuk

Authority:

Unizeto Technologies S.A.

Valid from:

6/24/2014 4:42:54 AM

Valid to:

6/24/2015 4:42:54 AM

Subject:

E=oleh.aleksyuk@hotmail.com, CN=Oleh Aleksyuk, O=Oleh Aleksyuk, C=RU

Issuer:

CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:

3F42151CCAD6E8C610946EE44021DAF5

File PE Metadata

Compilation timestamp:

4/7/2012 2:25:26 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

24576:FSPlEWAV7tt1XIY0Fa0emoqObTKUciIJW:FkS7ttdx0FIqOXUW

Entry address:

0x177C0

Entry point:

E8, 78, 48, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, 00, 54, 42, 00, E8, 6A, 0D, 00, 00, E8, 45, 4A, 00, 00, 0F, B7, F0, 6A, 02, E8, 0B, 48, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, D5, 06, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8... 
[+]

Entropy:

7.8575 (probably packed)

Code size:

126.5 KB (129,536 bytes)

Remove Top 25 Country Songs Of August 2014.mp4.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.