home

bdcbcd6b-d52c-6a49-cae1-5330721eb741_1d1d9e088b3dc50

Tolaracol

Gesuk

The file bdcbcd6b-d52c-6a49-cae1-5330721eb741_1d1d9e088b3dc50, “Tolaracol Setup ” has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions. The file has been seen being downloaded from www.bitsguardchuckle.com.
Publisher:
Gesuk

Product:
Tolaracol

Description:
Tolaracol Setup

MD5:
90d0656e26a9020f64a84ee1d40c152d

SHA-1:
7ba71e689c142b0cfb7ccf61805f5e32e50178e7

Scanner detections:
1 / 68

Status:
Potentially unwanted

Explanation:
Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Analysis date:
1/13/2025 12:36:38 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.InstallCore (L)
16.7.16.23

File size:
178.1 KB (182,392 bytes)

Product version:
5.7

Copyright:
Stub

Common path:
C:\ProgramData\microsoft\microsoft antimalware\scans\filesstash\bdcbcd6b-d52c-6a49-cae1-5330721eb741_1d1d9e088b3dc50

The file bdcbcd6b-d52c-6a49-cae1-5330721eb741_1d1d9e088b3dc50 has been seen being distributed by the following URL.

http://www.bitsguardchuckle.com/c?x=sBt gep2eB622zbin3QHKkPcAA0N/pe/dFI5dVYERt4=&c=Pa1BsxXQrBvDv23vyoiusA/o0XhHYMGLW Gpj8v4nxqlLx1UZM2Uh8QeXILJh9U2xTp4ZFzYm73rgvd0eEn6yYlOP5P6mIudEgJe8g/5 DKdtVx8IR3lefxSBI0aj8xq&downloadAs=TeamViewer_11056083_.exe&fallback_url=http://.../get.php?file=a4e12908&m3

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.