» idman.exe__15047_i1751498823_il1036820.ace
Overview
Analysis
File Details
Downloads (1)

idman.exe__15047_i1751498823_il1036820.ace

The file idman.exe__15047_i1751498823_il1036820.ace has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install. The file has been seen being downloaded from stateresolver.link.

File name:

MD5:

41c10cb06f50fb1135734a36a8303992

SHA-1:

d87e32e380aaed1dbf1fb22088996f60642f504b

SHA-256:

5be5132e4494d1dbb5403e97aefb47d9f007209498856a4e31fa082ea46968eb

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

11/15/2024 11:04:31 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Amonetize.Meta (M)

16.5.3.6

File size:

648.3 KB (663,875 bytes)

Common path:

C:\users\{user}\downloads\idman.exe__15047_i1751498823_il1036820.ace

The file idman.exe__15047_i1751498823_il1036820.ace has been seen being distributed by the following URL.

http://stateresolver.link/v24150?q=IDMan.exe

Remove idman.exe__15047_i1751498823_il1036820.ace - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.