» vmvjh.exe
Overview
Analysis
File Details
Downloads (1)

vmvjh.exe

mlru

PLT

The application vmvjh.exe has been detected as a potentially unwanted program by 5 anti-malware scanners. This is a setup program which is used to install the application. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install. The file has been seen being downloaded from www.akeepalpably.science.

File name:

vmvjh.exe

Publisher:

PLT

Product:

mlru

Description:

-----

Version:

41.193.229.216

MD5:

d10582e69477e3916117e823ca53d375

SHA-1:

47d09f9958b8199b9f144fbdbfbccdb34e7edca9

SHA-256:

9cd582a2048f467252a9c945ce621ded862e577f830ac0495ee1ac1378945cdd

Scanner detections:

5 / 68

Status:

Potentially unwanted

Analysis date:

5/5/2024 11:30:44 AM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Evo-gen [Susp]

160518-2

Emsisoft Anti-Malware

Gen:Application.Imonetize

9.0.0.4157

ESET NOD32

Win32/Amonetize.SE potentially unwanted application

8.0.319.0

F-Secure

Application.Imonetize.2

5.15.96

Norman

Gen:Application.Imonetize.2

19.05.2016 01:04:49

File size:

1.1 MB (1,181,696 bytes)

Product version:

41.193.229.216

CL2016

Trademarks:

Mark Cap

Original file name:

build.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\vmvjh.exe

File PE Metadata

Compilation timestamp:

6/1/2016 5:54:21 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

24576:255G+L8b2/GrOf4i652v2daGw9aRV7dU3XyGiqy1:M5hg2y2+dDw9an7IiGiqy

Entry address:

0x9217

Entry point:

E8, 93, 29, 00, 00, E9, 89, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 51, 8D, 4C, 24, 04, 2B, C8, 1B, C0, F7, D0, 23, C8, 8B, C4, 25, 00, F0, FF, FF, 3B, C8, 72, 0A, 8B, C1, 59, 94, 8B, 00, 89, 04, 24, C3, 2D, 00, 10, 00, 00, 85, 00, EB, E9, C7, 01, 48, 04, 41, 00, E9, 10, 14, 00, 00, 8B, FF, 55, 8B, EC, 56, 8B, F1, C7, 06, 48, 04, 41, 00, E8, FD, 13, 00, 00, F6, 45, 08, 01, 74, 07, 56, E8, 9C, ED, FF, FF, 59, 8B, C6, 5E, 5D, C2, 04, 00, 8B, FF, 55, 8B, EC, 56, 57, 8B, 7D, 08... 
[+]

Entropy:

7.9386 (probably packed)

Code size:

53 KB (54,272 bytes)

The file vmvjh.exe has been seen being distributed by the following URL.

http://www.akeepalpably.science/.../vmvjh.exe

Remove vmvjh.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.