» what is umaga gift mart sample sale in november when.exe
Overview
Analysis
File Details

what is umaga gift mart sample sale in november when.exe

Oleh Aleksyuk

The application what is umaga gift mart sample sale in november when.exe by Oleh Aleksyuk has been detected as adware by 23 anti-malware scanners. It is also typically executed from the user's temporary directory.

File name:

Publisher:

Oleh Aleksyuk (signed and verified)

MD5:

98aa4cc52095df7872a6518effa102dc

SHA-1:

c3665c4fadb8ad7f99c9d2383bdebf6ed451141a

SHA-256:

75cacde970773ea359ddcc9195c929e9c870773e592f9ea6307fec97f18b8c69

Scanner detections:

23 / 68

Status:

Adware

Analysis date:

4/26/2024 4:33:53 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Adware.MultiPlug.5

5816551

AhnLab V3 Security

PUP/Win32.MultiPlug

2014.12.15

Avira AntiVirus

Adware/MultiPlug.bfp

7.11.187.222

avast!

Win32:MultiPlug-MP [PUP]

2014.9-141219

AVG

Generic

2015.0.3284

Bitdefender

Gen:Variant.Adware.MultiPlug.5

1.0.20.1625

Comodo Security

Application.Win32.Multiplug.CT

20147

Emsisoft Anti-Malware

Gen:Variant.Adware.MultiPlug

9.0.0.4570

ESET NOD32

Win32/Adware.MultiPlug.DP application

7.0.302.0

F-Prot

W32/A-b5918a94

v6.4.7.1.166

F-Secure

Gen:Variant.Adware.MultiPlug.5

11.2014-21-11_6

G Data

Gen:Variant.Adware.MultiPlug

14.11.24

K7 AntiVirus

Unwanted-Program

13.185.14085

Kaspersky

not-a-virus:AdWare.Win32.MultiPlug

15.0.0.543

McAfee

MultiPlug-FSS

5600.6940

MicroWorld eScan

Gen:Variant.Adware.MultiPlug.5

15.0.0.975

NANO AntiVirus

Trojan.Win32.XPACK.djfdse

0.28.6.63850

Norman

Gen:Variant.Adware.Mplug.21

11.20141219

Panda Antivirus

PUP/TSUploader

14.11.21.12

Qihoo 360 Security

Malware.QVM10.Gen

1.0.0.1015

Reason Heuristics

PUP.OlehAleksyuk.u

14.11.20.23

Sophos

MultiPlug

4.98

Vba32 AntiVirus

Signed-Adware.MultiPlug

3.12.26.3

File size:

926.9 KB (949,104 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\temp\what is umaga gift mart sample sale in november when.exe

Digital Signature

Signed by:

Oleh Aleksyuk

Authority:

Unizeto Technologies S.A.

Valid from:

6/24/2014 4:42:54 AM

Valid to:

6/24/2015 4:42:54 AM

Subject:

E=oleh.aleksyuk@hotmail.com, CN=Oleh Aleksyuk, O=Oleh Aleksyuk, C=RU

Issuer:

CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:

3F42151CCAD6E8C610946EE44021DAF5

File PE Metadata

Compilation timestamp:

3/4/2012 7:23:48 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

24576:lPu52z5x9B1+voWQrNy++OwSS4PXJyn/lhgMJEv6:lPu529D+wWUNHwSS4PXWnvw6

Entry address:

0x42AA9

Entry point:

E8, EA, 38, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, 10, 54, 4A, 00, E8, 21, 14, 00, 00, E8, B7, 3A, 00, 00, 0F, B7, F0, 6A, 02, E8, 7D, 38, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, D6, 08, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8... 
[+]

Entropy:

7.4892

Code size:

297 KB (304,128 bytes)

Remove what is umaga gift mart sample sale in november when.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.