e instalar google chrome en espanol.exe

starT PlaYInG

This is the OutBrowse Revenyou installer which bundles offers for additional third party applications that may be unwanted and installed without consent. The application e instalar google chrome en espanol.exe by starT PlaYInG has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the OutBrowse Revenyou installer. With this installer, users are expecting to download Google's Chrome web browser but before that occurs they may be presented with additional offers, mostly potentially unwanted software or adware.
Publisher:
VSNFR  (signed by starT PlaYInG)

Product:
VSNFR

Version:
3405.1589.800.7361

MD5:
1683cced74113542112075f9fc5cd2b1

SHA-1:
86e994108b3889f67dd711b92de4800675c0b781

SHA-256:
bcdd569ed2fbd0608ac63ec536687f3b816a3313adc678c6a95b3f4eceba8c05

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Description:
This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:
12/28/2024 9:51:22 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Outbrowse.Bundler
17.2.24.5

File size:
713.9 KB (731,008 bytes)

Product version:
3405.1589.800.7361

Copyright:
VSNFR

Trademarks:
VSNFR

File type:
Executable application (Win32 EXE)

Bundler/Installer:
OutBrowse Revenyou (using Nullsoft Install System)

Common path:
C:\users\{user}\downloads\e instalar google chrome en espanol.exe

Digital Signature
Signed by:

Authority:
thawte, Inc.

Valid from:
6/29/2015 8:00:00 PM

Valid to:
12/11/2015 7:59:59 PM

Subject:
CN=starT PlaYInG, O=starT PlaYInG, L=Dublin, S=Dublin, C=IE

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
2E2044E61FEEBFB2FDD3D1020A7E2122

File PE Metadata
Compilation timestamp:
12/5/2009 6:52:12 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x30FA

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 18, 1C, 45, 00, E8, F1, 2B, 00, 00, A3, 64, 1B, 45, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 98, 37, 43, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 60, DB, 44, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, A0, 47, 00, 50, 57, E8, 92, 28, 00, 00...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
23.5 KB (24,064 bytes)

Remove e instalar google chrome en espanol.exe - Powered by Reason Core Security