dealsplugin.exe
Deals Plugin Extension
215 Apps
This is part of a distribution package that is classified as adware distributed by 50onRed. This adware is used to interact with the installed web browsers and inject ads and modify the default search and homepages. The application dealsplugin.exe, “Deals Plugin Extension Installer” has been detected as adware by 8 anti-malware scanners. This web browser addon will display additional advertisements in the user's browser including popup, banner, contextual hyperlinks as well as affiliate links. The file has been seen being downloaded from dealsplugin.com.
File name:
dealsplugin.exe
Product:
Deals Plugin Extension
Description:
Deals Plugin Extension Installer
MD5:
9993b35e0a49d9ef9850eb4d435e6160
SHA-1:
cd4d9cbc41cb570a38b6b33efa86832943f7e99b
SHA-256:
531dd781f7107be2c74d5eb1e02419b8bfe069811a4fd91a8be201a988ea93ad
Scanner detections:
8 / 68
Explanation:
Browser extension that injects additional advertisements (banner and text links) on web pages.
Analysis date:
1/12/2025 4:58:33 PM UTC (today)
Scan engine
Detection
Engine version
Bkav FE
HW32.CDB
1.3.0.4246
Boost by Reason
Trojan.Adw.Installer.215Apps.L
2013.8.3.17
ESET NOD32
Win32/Packed.ScrambleWrapper
7.8831
Norman
Suspicious_Gen4.EUJEF
11.20131125
Reason Heuristics
PUP.Installer.215Apps.L
14.3.1.0
Trend Micro House Call
TROJ_GEN.F47V0405
7.2.215
VIPRE Antivirus
GamePlayLabs
21730
File size:
3.1 MB (3,298,276 bytes)
Copyright:
Copyright 215 Apps
File type:
Executable application (Win32 EXE)
Language:
English (United States)
Common path:
C:\users\{user}\downloads\dealsplugin.exe
Compilation timestamp:
1/5/2010 4:09:32 AM
CTPH (ssdeep):
98304:nE5jMTGYoJWDYZ7YktYT3eOLRb7vTTsL5:EAO1ltYT3PlbDE5
Code size:
33 KB (33,792 bytes)
The file dealsplugin.exe has been seen being distributed by the following URL.