adobe flash professional cs6 f downloader__3687_i1914949540_il404921_26.exe

Smart Ekspo, TOV

The file adobe flash professional cs6 f downloader__3687_i1914949540_il404921_26.exe by Smart Ekspo, TOV has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install. The file has been seen being downloaded from www.lchantingly.press.
Publisher:
Smart Ekspo, TOV  (signed and verified)

MD5:
332ba4d9f6e9b3b9a884f9300c5924f8

SHA-1:
59633958a01f4633ab24aa5a3fc8b3c3db3e5c7e

SHA-256:
0c26e66f8bdb47f188033b820629c7e18795d12ba17197c716c6a4ef8a39605b

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/23/2024 10:26:19 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Amonetize.SmartEks (M)
16.4.28.18

File size:
398 KB (407,568 bytes)

Common path:
C:\users\{user}\downloads\adobe flash professional cs6 f downloader__3687_i1914949540_il404921_26.exe.part

Digital Signature
Authority:
COMODO CA Limited

Valid from:
4/17/2016 7:00:00 AM

Valid to:
4/18/2017 6:59:59 AM

Subject:
CN="Smart Ekspo, TOV", OU=IT, O="Smart Ekspo, TOV", STREET="Bud. 10-A kv. 2/3, vul.Akademika Filatova", L=Kiev, S=Kiev, PostalCode=01010, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
54DF38412881DF47A9BBB92C51BF475D

The file adobe flash professional cs6 f downloader__3687_i1914949540_il404921_26.exe has been seen being distributed by the following URL.