firefox_setup.zip

The file firefox_setup.zip has been detected as a potentially unwanted program by 7 anti-malware scanners. It uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions. The file has been seen being downloaded from cdn.downloadbinfiles.net.
MD5:
7f9c9417cafbf351a28d6aed0ea5168b

SHA-1:
31839dd93b02898df11843a2ca65ac3b76a855d4

SHA-256:
5727068473684a9a89c5cda393a3c0b328e9260c09eb66958f00789bc6878a3e

Scanner detections:
7 / 68

Status:
Potentially unwanted

Explanation:
Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Analysis date:
12/25/2024 1:52:26 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
PUA/InstallCore.diur
8.3.2.2

AVG
InstallCore
2016.0.2974

Dr.Web
infected with Trojan.InstallCore.1151
9.0.1.05190

ESET NOD32
Win32/InstallCore.ACP.gen potentially unwanted application
7.0.302.0

NANO AntiVirus
Riskware.Win32.InstallCore.dwusho
0.30.26.3725

Vba32 AntiVirus
Malware-Cryptor.InstallCore.gen
3.12.26.4

VIPRE Antivirus
Trojan.Win32.Generic
44098

File size:
858.4 KB (878,973 bytes)

Common path:
C:\users\{user}\downloads\firefox_setup.zip

The file firefox_setup.zip has been seen being distributed by the following URL.

Remove firefox_setup.zip - Powered by Reason Core Security