» evasion7_v1.0.8.rar
Overview
Analysis
File Details
Downloads (1)

evasion7_v1.0.8.rar

The file evasion7_v1.0.8.rar has been detected as a potentially unwanted program by 5 anti-malware scanners. The setup routine uses the RevenYou.Com Pay Per Install platform (OutBrowse) which bundles additional software offers inclduing toolbars, extensions, PC utilities as well as other PUPs. The file has been seen being downloaded from get.0140a.info.

File name:

evasion7_v1.0.8.rar

MD5:

f8af6093f1b1b06f45cbb4bf3694ff18

SHA-1:

1fca5460ba193d9dd8f7539142c0aa0e5d9cb340

SHA-256:

7483182ce75e81715486df84caa421ae8748ba5d4c74d3886b6b21b80e096ea7

Scanner detections:

5 / 68

Status:

Potentially unwanted

Explanation:

Bundles additional adware offers during download and installation using the OutBrowse installer.

Analysis date:

11/16/2024 1:01:08 PM UTC (today)

Scan engine

Detection

Engine version

Dr.Web

infected with Trojan.OutBrowse.1611

9.0.1.05190

ESET NOD32

Win32/OutBrowse.BZ potentially unwanted application

7.0.302.0

Kaspersky

not-a-virus:AdWare.Win32.OutBrowse

15.0.0.562

McAfee

Trojan.Adware-OutBrowse.h

18.0.204.0

Microsoft Security Essentials

Threat.Undefined

1.211.1235.0

File size:

520.3 KB (532,757 bytes)

Common path:

C:\users\{user}\downloads\evasion7_v1.0.8.rar

The file evasion7_v1.0.8.rar has been seen being distributed by the following URL.

http://get.0140a.info/.../1444146967/1444146967?09340952653Z1xxLjM2azsrLDM0LSNgPSktMiwzI2w0Ly02KC0kaDguJl1maGVlXGtfOEJ2WHBlb2UyXXAsKzAlNSJpWmpsNy4tJmdvaD0oIWFpaToxHXdlcDQz

Remove evasion7_v1.0.8.rar - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.