home

free-manager.exe

The executable free-manager.exe has been detected as malware by 1 anti-virus scanner. The file has been seen being downloaded from download3.operacdn.com and multiple other hosts.
MD5:
71fd3919e615063166572d309bf1e74b

SHA-1:
1b7827eca93c0850e287c4ddeeac07dc3827bd12

SHA-256:
411f8b2021ac302b4f01ef5b18a773ec1864cebf264aca078b392c9f86159a09

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/27/2024 4:30:56 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
(M)
16.6.5.16

File size:
1 KB (1,038 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\free-manager.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
24:i5FNFja12gUGms7IF7D5jTUEhb5UTVTjTZy:i5FNha1lUDs7Uf5joS5U5nw

Entry point:
3C, 48, 54, 4D, 4C, 3E, 0D, 0A, 3C, 48, 45, 41, 44, 3E, 0D, 0A, 3C, 54, 49, 54, 4C, 45, 3E, 4B, 37, 49, 6E, 74, 65, 72, 6E, 65, 74, 53, 65, 63, 75, 72, 69, 74, 79, 20, 53, 61, 66, 65, 20, 53, 75, 72, 66, 3C, 2F, 54, 49, 54, 4C, 45, 3E, 0D, 0A, 3C, 73, 74, 79, 6C, 65, 20, 74, 79, 70, 65, 3D, 22, 74, 65, 78, 74, 2F, 63, 73, 73, 22, 3E, 0D, 0A, 62, 6F, 64, 79, 20, 7B, 20, 6D, 61, 72, 67, 69, 6E, 3A, 35, 70, 78, 3B, 70, 61, 64, 64, 69, 6E, 67, 3A, 30, 70, 78, 3B, 20, 66, 6F, 6E, 74, 2D, 66, 61, 6D, 69, 6C, 79...
 
[+]

Entropy:
5.4345

The file free-manager.exe has been seen being distributed by the following 19 URLs.

http://download3.operacdn.com/pub/.custom/ABTest/.../Opera_40.0.2308.17697_Setup.exe

http://cdn.pcpurifier.com/js/pcpurifier/setups/.../setup.exe

http://www.getvideos.co/Plugins/TvPlayerPlugin/bin/Versions/.../TvPlayerPluginCore.dll

http://www.getvideos.co/Plugins/TvPlayerPlugin/bin/Versions/.../TvPlayerPluginCore.dll

http://dl.ikiki.cn/dl/.../rav_1618280.exe

http://www.giftchuckleflash.com/m889ws3dK4q_OxKGneCDjHhOVdyzqxa2wrUIVq1WNx3IcEuffn38B2jyd7CD7lCS2XosZrJBrRaUdS BLz9Cs5_O5Haqk7 h KJhafv6SXw6jqWPR6HljJEwFbBYti_zG GDInU5Dx52Gll4HI1vOBvxqL1v3_B6VVXDQKpUL8oJMsbMBwLzgZiPfwhTlIYti dDLNyW-G14AAGRgnq2tCQ7J mEDDlzSRAYdwCc4s 1Lf9_7EvANDeu61XPRKHN4mId3qEFFkHtCza Rr1v8a9RYW6zbbBl EU4WRWzd0AjogSNsCzGkDg=

http://www.getvideos.co/Plugins/TvPlayerPlugin/bin/Versions/.../TvPlayerPluginCore.dll

http://www.getvideos.co/Plugins/TvPlayerPlugin/bin/Versions/.../TvPlayerPluginCore.dll

http://www.conceptspresentmeta.com/c?x=FxPsf/nF/Z8r07Hu5IymQOjLn0ls1/OURJ7gvPjmb7s=&c=RDK0Q3ekLVEdv OJZafd8udLsGshCnlXwiXxcWj23Eq8q9r96Wl1SPf7uhY/q0oCS36lS3O8Di8dHb3FdqO6p05sgYOZ/XPI6nMeor7UjyNoICS dqnW2Xu340n5TCq0hsJN4UtP/WfECEVk8 s6LgyGvUu HKouBxcPR3nhYls=&e=0&downloadAs=camstudio.exe&fallback_url=http://.../CamStudioSetup.exe

http://www.getvideos.co/Plugins/TvPlayerPlugin/bin/Versions/.../TvPlayerPluginCore.dll

http://sub.spirlymo.com/installers/bi_downloader/.../setup.exe

http://secured.cdnpmmm.us/VuuPC_VO2_8907.exe

http://download.mpc.am/mpc/.../MPC_Setup.exe

http://www.osdsoft.com/.../updater.exe

http://twelveaward.com/.../setup_3017e.exe

http://sub.spirlymo.com/installers/cli/.../SevenZip_downloader-Q9ArR4JeU.exe

http://operasoftware.pc.cdn.bitgravity.com/pub/.custom/ABTest/.../Opera_34.0.2036.42_Setup.exe

http://webprotectionfree.com/.../SetupComponents.exe

http://special-bundles.s3-website-us-east-1.amazonaws.com/setup_362.exe

Remove free-manager.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.