home

winrar remover - winrar password remover.zip

The file winrar remover - winrar password remover.zip has been detected as malware by 5 anti-virus scanners. The file has been seen being downloaded from files.downloadnow.com and multiple other hosts.
MD5:
5bd5b6c3753ef461163d14e5322e1d51

SHA-1:
9e2a24a6cd19115ea8ed94dd8518c80e8efd1c50

SHA-256:
22fe714b41276fc735b5a8c83f73273361fe2cb185b3fa1cb5273d04af2a37c7

Scanner detections:
5 / 68

Status:
Malware

Analysis date:
4/19/2024 1:43:30 AM UTC  (today)

Scan engine
Detection
Engine version

Baidu Antivirus
Trojan.MSIL.FakeTool
4.0.3.15811

Comodo Security
UnclassifiedMalware
22952

ESET NOD32
MSIL/FakeTool.AEL trojan
7.0.302.0

IKARUS anti.virus
Trojan.MSIL.FakeTool
t3scan.1.9.5.0

McAfee
Artemis!6C8C169CE56A
5600.6677

File size:
88.2 KB (90,279 bytes)

Common path:
C:\users\{user}\downloads\winrar remover - winrar password remover.zip

The file winrar remover - winrar password remover.zip has been seen being distributed by the following 6 URLs.

http://files.downloadnow.com/s/software/13/81/83/.../WinRAR Remover.zip?token=1464264664_6cd0036ea7851c15b6f9b87d5360eaa4&fileName=WinRAR Remover.zip

http://global-shared-files-lw.softonic.com/9e2/a24/.../WinRAR_Remover.zip?st=wlHkC9Uf98qdRdxFk-zKLg&e=1479687155&SD_used=0&channel=WEB&fdh=no&id_file=69693850&instance=softonic_en&type=PROGRAM&filename=WinRAR_Remover.zip

http://global-shared-files-lw.softonic.com/9e2/a24/.../WinRAR_Remover.zip?st=ag7DonKS8U-ITbDRzKp4ZA&e=1459281899&SD_used=0&channel=WEB&fdh=no&id_file=69693850&instance=softonic_en&type=PROGRAM&filename=WinRAR_Remover.zip

http://download1204.mediafire.com/fs4tm1608zzg/.../WinRAR Remover - WinRar Password Remover.zip

http://download1056.mediafire.com/ryrm49xtb15g/.../WinRAR Remover - WinRar Password Remover.zip

http://dc617.4shared.com/download/.../WinRAR_Remover_-_WinRar_Passwo.zip?tsid=20150805-070116-9aa9f30c&lgfp=2000

Remove winrar remover - winrar password remover.zip - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.