winrar remover - winrar password remover.zip
The file winrar remover - winrar password remover.zip has been detected as malware by 5 anti-virus scanners. The file has been seen being downloaded from files.downloadnow.com and multiple other hosts.
File name:
winrar remover - winrar password remover.zip
MD5:
5bd5b6c3753ef461163d14e5322e1d51
SHA-1:
9e2a24a6cd19115ea8ed94dd8518c80e8efd1c50
SHA-256:
22fe714b41276fc735b5a8c83f73273361fe2cb185b3fa1cb5273d04af2a37c7
Scanner detections:
5 / 68
Analysis date:
4/19/2024 1:43:30 AM UTC (today)
Scan engine
Detection
Engine version
Baidu Antivirus
Trojan.MSIL.FakeTool
4.0.3.15811
Comodo Security
UnclassifiedMalware
22952
ESET NOD32
MSIL/FakeTool.AEL trojan
7.0.302.0
IKARUS anti.virus
Trojan.MSIL.FakeTool
t3scan.1.9.5.0
McAfee
Artemis!6C8C169CE56A
5600.6677
File size:
88.2 KB (90,279 bytes)
Common path:
C:\users\{user}\downloads\winrar remover - winrar password remover.zip
The file winrar remover - winrar password remover.zip has been seen being distributed by the following 6 URLs.
http://files.downloadnow.com/s/software/13/81/83/.../WinRAR Remover.zip?token=1464264664_6cd0036ea7851c15b6f9b87d5360eaa4&fileName=WinRAR Remover.zip
http://global-shared-files-lw.softonic.com/9e2/a24/.../WinRAR_Remover.zip?st=wlHkC9Uf98qdRdxFk-zKLg&e=1479687155&SD_used=0&channel=WEB&fdh=no&id_file=69693850&instance=softonic_en&type=PROGRAM&filename=WinRAR_Remover.zip