baixar-musicas-gratis-3-8-0-32-bits.exe

Generic Internet

The application baixar-musicas-gratis-3-8-0-32-bits.exe, “Generic Internet Setup ” has been detected as a potentially unwanted program by 12 anti-malware scanners. The program is a setup application that uses the Inno Setup installer, however the file is not signed with an authenticode signature from a trusted source. The setup program uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions. The file has been seen being downloaded from d.baixakifiles2.com and multiple other hosts.
Product:
Generic Internet

Description:
Generic Internet Setup

MD5:
bd5e7b0e307943f9fc5c5212b1d69535

SHA-1:
8d6036c9f3f00457f2d7d66283a8da660428b5c5

SHA-256:
d50a9df4c52f8a499e82ca617c44aa8529471721a862249fc6e7593a98e5f64d

Scanner detections:
12 / 68

Status:
Potentially unwanted

Explanation:
Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Analysis date:
11/5/2024 10:26:07 PM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
PUA.InstallCore
7.1.1

Avira AntiVirus
7.11.198.252

avast!
Win32:Malware-gen
2014.9-150105

Baidu Antivirus
Adware.Win32.InstallCore
4.0.3.1515

Comodo Security
Application.Win32.InstallCore.QL
20562

ESET NOD32
Win32/InstallCore.QL (variant)
9.10954

Fortinet FortiGate
Riskware/InstallCore
1/5/2015

K7 AntiVirus
Trojan
13.188.14496

Malwarebytes
PUP.Optional.Bundler
v2015.01.05.05

Sophos
Generic PUA IN
4.98

Trend Micro House Call
Suspicious_GEN.F47V1226
7.2.5

VIPRE Antivirus
Trojan.Win32.Generic
36302

File size:
673.9 KB (690,035 bytes)

Product version:
2.0

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\baixar-musicas-gratis-3-8-0-32-bits.exe

File PE Metadata
Compilation timestamp:
6/19/1992 7:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:Cw0p6tGA/vOdc/t5lkA5OTryEjqMKdJ2Qj7bYm9+af8kbCsGIxGCDUBZsdKM7sUE:Cw0EUA3Bt5lkHTry8gJ2QjWaf8ECsx38

Entry address:
0x9C40

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, 24, CE, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, 24, CE...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
37 KB (37,888 bytes)

The file baixar-musicas-gratis-3-8-0-32-bits.exe has been seen being distributed by the following 6 URLs.

http://d.baixakifiles2.com/?ic_user_id=9289&data=kOCjJjCC9oOy0ausc/ANr05MJFUqJee/nitYNPTDLQmVYOHEsQMHYJONp NZpaASYkYEqfrDyFaL4UbJQrF2DfgwT0LOeQdqBEWjIEnoulXECIhlp0HE4aZlb eTS3Sq1I/oJakpjHJ5U vmAFHoexlJrY1tng1RangItszTsCOqgcFOt Y a06beG2XTbm9ltLjAAJYHkdfl/puBrOJg7dVI4jfFtC voEEJAgruGRJ4kEezRUgd1Tp1ZvxPHE1uPm uSpGt7BvmktutDXpIzjMdskGkEd8x35F5MRlOnbvmPPRVOpPO95zKjiHQD5NhQJsHHS1TsttvtUM87vHzCQgFs6dGWPOePYUAotlS2hlpP2Cfp5xgwt2hhKoG1dypvQU9UKIpYpdut9eItT3gpV mjD3/SFSNA5vp7FK4UH2 uxOZlaSCaK iiHQlC8AJnZdyIneFA2CMsO5oVHR/j O5T4Vn1LAggM/3txSwQUpZd O8k0VK615CBUXYCFqhGE1SUhA/t HjXBD SNuV9luC7z7fPe/ZGkXdn/xgq5IEraq6dqLRpG t8qkbWy3SEy/ZQrmETNBrjUZJtjPRkTHsQefmapIXVKVztFYMnqUYUV/2DGgpBwO3jCC/u6PCT6ZZJegOQjWAj87CfqB74axyBj1b4k8cIVWq8PAQ0PInu/izpiaHzyzMnlKNnqi5zzLceeVmhkXduJSq UIV5vs0FcRjPRMb9xtqUSKRoMsznzLdYJcL0L/eF4fkbb1zTvexeKGsEgqmMaL4UAIQ==&key=Bomf62aSSyrCwtTmSX0gzl9 /gtC1z90cMoc6d8pQNOiEArhk7GLjzcIXmjRGDGiH0ZGQqV/.../SZyi61x8ZO2rGP15j4AoREa80E9Rkajms4hCBSssuL6G0lkI4

Remove baixar-musicas-gratis-3-8-0-32-bits.exe - Powered by Reason Core Security