idman618build11.exe

AutoPlay Media Studio Launcher

The application idman618build11.exe, “AutoPlay Application” has been detected as a potentially unwanted program by 12 anti-malware scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from docs.google.com and multiple other hosts.
Product:
AutoPlay Media Studio Launcher

Description:
AutoPlay Application

Version:
8.2.0.0

MD5:
1687cec3d22fc0bb2f88424df1791645

SHA-1:
6491a5096beae4c2eb719ae69d39e16cff864cba

SHA-256:
595e7b7bc7127aba41ad0f4f272d6175709498a16ea9f6e32517068c6c9bfc9f

Scanner detections:
12 / 68

Status:
Potentially unwanted

Analysis date:
12/27/2024 8:23:37 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Malware-gen
2014.9-150608

AVG
Crack
2016.0.3084

Fortinet FortiGate
Riskware/PUP
6/8/2015

IKARUS anti.virus
not-a-virus.Keygen.IDM6
t3scan.1.9.5.0

Malwarebytes
RiskWare.Tool.CK
v2015.06.08.10

McAfee
Artemis!1687CEC3D22F
5600.6740

Microsoft Security Essentials
1.1.11701.0

Qihoo 360 Security
HEUR/QVM41.2.Malware.Gen
1.0.0.1015

Quick Heal
HackTool.Keygen.r3 (Not a Virus)
6.15.14.00

Sophos
Generic PUA CF
4.98

Trend Micro House Call
Suspicious_GEN.F47V0515
7.2.159

VIPRE Antivirus
HackTool.Win32.Keygen
40880

File size:
10.9 MB (11,408,593 bytes)

Product version:
8.2.0.0

Copyright:
Runtime Engine Copyright © 2013 Indigo Rose Corporation (www.indigorose.com)

Trademarks:
AutoPlay Media Studio is a Trademark of Indigo Rose Corporation

Original file name:
ams_launch.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\programs\idman618build11.exe

File PE Metadata
Compilation timestamp:
9/24/2013 5:26:36 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
196608:5mY+NpfNBnIcByrDwasLCtQqiS0qXS+A5+v++gF21d52RVLx9iVY4QV8XSgEGe9Y:E1ZI2yPwasLDcSR4UFIdkTx9iVdaiEGp

Entry address:
0x2CBBC

Entry point:
E8, 15, C6, 00, 00, E9, 78, FE, FF, FF, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, 0C, 06, 45, 00, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, 0C, 06, 45, 00, 33, C5, 50, 89, 65, F0, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B...
 
[+]

Code size:
253.5 KB (259,584 bytes)

The file idman618build11.exe has been seen being distributed by the following 19 URLs.

https://docs.google.com/uc?authuser=0&id=0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE&export=download

https://doc-04-as-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/23gk8evarkkmabg5cmgnpkl8emt8eile/1484503200000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

https://doc-04-as-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/0bbou48r5p2hh0t222vk4d8sd8j3oon8/1486382400000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

https://doc-14-3k-docs.googleusercontent.com/docs/securesc/u8d977vn9a5fmv7a86p86jmmk5gom8g7/mbbckq1dbj5hv2qnt020qicipivn760u/1486915200000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

https://doc-04-5s-docs.googleusercontent.com/docs/securesc/s3oepn0fm7m0nm2j2koi6broch4q4t3t/eecfr1te9uaevl6gep06o0h8kg7un7e1/1477317600000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

https://doc-04-as-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/8fet99ch2kolceadm9ttpulauf2ohhft/1480284000000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

https://doc-04-as-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/fctfugvdrlsag8s1k8n1f41cgvjmg7sq/1482393600000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

https://doc-04-as-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/g283jlfev33rg1b8eslqk1ohkhldpmfq/1480528800000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

https://doc-0s-8o-docs.googleusercontent.com/docs/securesc/1fmbd4o1er28nveifdp2q1n2hieq4hi4/61du5nfcpvlskhf3f8iqc37h6jpfbkh1/1472558400000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

https://doc-04-as-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/231qok5t60v7kvgb8tt2s8kh7udsv3fn/1481292000000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

https://doc-0s-1c-docs.googleusercontent.com/docs/securesc/c1fv64evg6ft3s8qhgu1o2vi8i2spec5/jbuclrk68tn6sqgjel1rif0neuaj92qs/1473156000000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

https://doc-04-as-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/7qlo8saec4lgnh9f2skfqcpacieud79u/1475863200000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

https://doc-04-as-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/lascn0hnl2j2ivr7s3k0l96jdtq24tr8/1479578400000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

https://docs.google.com/uc?authuser=0&id=0B7GnGWT8kmhQR04wU3FMa1VSckU&export=download

https://doc-0s-5k-docs.googleusercontent.com/docs/securesc/9fegiis4nghrml0aqfiq1o3oupi2eosr/6hon1qj4n0qctmt0i3703svvshhdmf0b/1475438400000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

https://doc-0g-a8-docs.googleusercontent.com/docs/securesc/e98qf9hun3s3243jssjlvsgvvkj3jegj/qb21ne4v5f6gkq7liplb80h8qfqk1mo3/1474927200000/13044191860120051435/.../0B9SGvcQ7PcULcVB5Y3F0ZGsyNEE?e=download

Remove idman618build11.exe - Powered by Reason Core Security