» boogie woogie, trilha sonora nova novela das seis da globo.exe
Overview
Analysis
File Details

boogie woogie, trilha sonora nova novela das seis da globo.exe

Project1

MIDIA TECHNOLOGIES LLC

The application boogie woogie, trilha sonora nova novela das seis da globo.exe by MIDIA TECHNOLOGIES has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the Midia Downloader installer.

File name:

Publisher:

Dunha (signed by MIDIA TECHNOLOGIES LLC)

Product:

Project1

Version:

1.00.0004

MD5:

49567389b70f917c213c141341506c81

SHA-1:

1d906cdfb48e6a92e29e4cff345d4ff197618a3d

SHA-256:

b14427b513361affb12e8d638b19f2bce8306e683e3cec5a166a14b26de66bc3

Scanner detections:

1 / 68

Status:

Adware

Note:

Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Description:

This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:

12/26/2024 8:10:23 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Midia Technologies (M)

17.1.3.0

File size:

794.2 KB (813,224 bytes)

Product version:

1.00.0004

Original file name:

100214_new.exe

File type:

Executable application (Win32 EXE)

Bundler/Installer:

Midia Downloader

Language:

English (United States)

Common path:

C:\users\{user}\downloads\boogie woogie, trilha sonora nova novela das seis da globo.exe

Digital Signature

Signed by:

MIDIA TECHNOLOGIES LLC

Authority:

Starfield Technologies, Inc.

Valid from:

8/20/2014 2:02:17 PM

Valid to:

4/11/2015 3:45:06 PM

Subject:

CN=MIDIA TECHNOLOGIES LLC, O=MIDIA TECHNOLOGIES LLC, L=Lewes, S=Delaware, C=US

Issuer:

SERIALNUMBER=10688435, CN=Starfield Secure Certification Authority, OU=http://certificates.starfieldtech.com/repository, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:

04069915073F46

File PE Metadata

Compilation timestamp:

8/20/2014 5:38:07 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

Entry address:

0x1C7000

Entry point:

56, 50, 53, E8, 01, 00, 00, 00, CC, 58, 89, C3, 40, 2D, 00, A0, 0B, 00, 2D, 91, 3B, 0C, 10, 05, 88, 3B, 0C, 10, 80, 3B, CC, 75, 19, C6, 03, 00, BB, 00, 10, 00, 00, 68, B3, 67, 6F, 20, 68, 42, 0C, FF, 60, 53, 50, E8, 0A, 00, 00, 00, 83, C0, 00, 89, 44, 24, 08, 5B, 58, C3, 55, 89, E5, 50, 53, 51, 56, 8B, 75, 08, 8B, 4D, 0C, C1, E9, 02, 8B, 45, 10, 8B, 5D, 14, 85, C9, 74, 0A, 31, 06, 01, 1E, 83, C6, 04, 49, EB, F2, 5E, 59, 5B, 58, C9, C2, 10, 00, DC, 47, A2, 6B, 92, 6F, 0C, 00, E1, 6B, 67, 1A, 45, 12, 3A, 87... 
[+]

Code size:

44 KB (45,056 bytes)

Remove boogie woogie, trilha sonora nova novela das seis da globo.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.