avast! free antivirus.exe

XXXVI-II cattus immineo apto pervideo

hic cursito fodio

The application avast! free antivirus.exe has been detected as a potentially unwanted program by 10 anti-malware scanners. This is a setup program which is used to install the application. It uses the Solimba download manager to push adware offers during the download and setup process. Bundled adware includes search and shopping web browser toolbars. The file has been seen being downloaded from it.pc-file.info a known adware distribution point operated by FIRSERIA, S.L..
Publisher:
hic cursito fodio

Product:
XXXVI-II cattus immineo apto pervideo

Description:
sursum res

Version:
51.45.44.16

MD5:
2d14f065cc2925ffde6c05b1d2b30a8a

SHA-1:
64cf74023eb3f7040b2a896833f19651e8af2086

SHA-256:
f92b1719892a2ad9237941eb158dd9c31363e336fabbf4a3f9b5323b0341012c

Scanner detections:
10 / 68

Status:
Potentially unwanted

Explanation:
Uses the Solimba installer to bundle adware offers.

Analysis date:
12/26/2024 12:33:20 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
MSIL:Solimba-Z [PUP]
160208-2

AVG
Adware BundleApp_r.AV
2015.0.4522

Dr.Web
Adware.Downware.8763
9.0.1.05190

Emsisoft Anti-Malware
Gen:Variant.Razy.6451
10.0.0.5366

ESET NOD32
MSIL/Solimba.AH potentially unwanted application
7.0.302.0

Kaspersky
not-a-virus:Downloader.Win32.Morstar
15.0.0.562

Microsoft Security Essentials
Threat.Undefined
1.213.5628.0

Norman
Gen:Variant.Razy.6451
18.01.2016 17:20:53

Sophos
PUA 'Solimba Installer'
5.23

VIPRE Antivirus
Threat.4150696
46946

File size:
522.7 KB (535,295 bytes)

Product version:
24.74.49.85

Copyright:
2014 tibi

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\avast! free antivirus.exe

File PE Metadata
Compilation timestamp:
10/9/2014 5:33:48 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
12288:WI654uaBIWTeFNIitG4R0DYiiMSoU/xJ7N2E+N4suRV:WI6aGWTDaGM014ZJ7N2u3RV

Entry address:
0xDE9C

Entry point:
E8, A5, 6C, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, E8, 6D, 42, 00, E8, FE, 15, 00, 00, E8, 76, 6E, 00, 00, 0F, B7, F0, 6A, 02, E8, 38, 6C, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, 01, 65, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8...
 
[+]

Packer / compiler:
PEQuake V0.06

Code size:
113.5 KB (116,224 bytes)

The file avast! free antivirus.exe has been seen being distributed by the following URL.

Remove avast! free antivirus.exe - Powered by Reason Core Security