home

free idm portable 5.18full version_10924_i48950296_il345.exe

Runner Utility

BERSHNET LLC

The application free idm portable 5.18full version_10924_i48950296_il345.exe by BERSHNET has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Dummy, Ltd.  (signed by BERSHNET LLC)

Product:
Runner Utility

Version:
1.0.0.187

MD5:
335dbe26fadbe360d00780e979a865c9

SHA-1:
06afff5b20e2529dbc17294bb2da2828a5b9f88b

SHA-256:
f237e2a69f0731aa3c42ed972f5fc1ec7444f72a35ef423a120107c2fe5a51ff

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/23/2024 10:43:24 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Amonitize (M)
17.3.16.2

File size:
1.5 MB (1,592,848 bytes)

Product version:
1.0.0.187

Copyright:
Copyright (C) 2013

Original file name:
runner.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:
BERSHNET LLC

Authority:
COMODO CA Limited

Valid from:
2/6/2015 7:00:00 AM

Valid to:
2/7/2016 6:59:59 AM

Subject:
CN=BERSHNET LLC, O=BERSHNET LLC, STREET="st. 600-richya b.66, of.10", L=Vinnitsya, S=Vinnitskaya, PostalCode=21027, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00E2D6C6F8DDF832E09DCF766B299AD2A9

File PE Metadata
Compilation timestamp:
4/2/2015 2:13:08 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

Entry address:
0x40041B

Entry point:
E8, 4F, 2A, 00, 00, 60, 8D, 64, 24, 20, 0F, 83, 45, 7D, E8, FF, F6, DB, D2, DF, 89, C3, 87, CF, 89, C7, 66, 81, E1, 33, 48, B9, 04, 01, 00, 00, 60, 28, C0, E8, 69, 19, E9, FF, E8, 8B, E6, FF, FF, E9, 67, F3, E8, FF, FF, 34, 24, 60, 9C, 8D, 64, 24, 2C, 0F, 82, ED, 7D, E8, FF, F6, C5, 7E, 66, D3, F0, 0F, B6, 45, FE, 30, DA, 80, EE, 63, 66, 11, E2, C1, E8, 05, 52, 0F, B6, D1, 69, C0, 00, 03, 00, 00, 60, 0F, 94, C2, 8D, 84, 83, D8, 94, 00, 00, D3, C2, D3, E2, 81, FF, 28, 64, FE, B3, 80, F6, 80, 89, 4C, 24, 20...
 
[+]

Code size:
187.5 KB (192,000 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.