home

avg8d37.exe

SilentInstaller

This is a setup and installation application. The file has been seen being downloaded from d2c05t2osze7ht.cloudfront.net.
Product:
SilentInstaller

Version:
1.0.0.1

MD5:
7a8e3d8d9ffb85bc5eabb3e4b305b49b

SHA-1:
2e2f628f49da50cb5cf6ca2dd100dd0c8b8d4d8f

SHA-256:
f6d505070a193eaf5fdddaff390da5e6d9a97211393925a35f35747e58a32c1c

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
1/5/2025 12:14:17 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
MSIL/Adware.Imali.C application
7.0.302.0

File size:
314 KB (321,536 bytes)

Product version:
1.0.0.1

Copyright:
Copyright © 2014

Original file name:
SilentInstaller_dotnet4.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\avg8d37.exe

File PE Metadata
Compilation timestamp:
12/28/2015 6:39:27 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:eD4FZT8qbTR7SquD4L8vioH/X8i9DLnHWcefjVo8bS5V85faGSL:eDIZwgVxGq86oH/MKvnolgTGM

Entry address:
0x4F4AE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.8802

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
309.5 KB (316,928 bytes)

The file avg8d37.exe has been seen being distributed by the following URL.

http://d2c05t2osze7ht.cloudfront.net/SilentInstaller_dotnet4.exe

Scan avg8d37.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.