Installer.PlayBryte.exe

The application Installer.PlayBryte.exe has been detected as a potentially unwanted program by 9 anti-malware scanners. The file has been seen being downloaded from cdn.install.playbryte.com a web site host known to distribute potentially unwanted software operated by Optimum Installer.
Version:
1.0.0.0

MD5:
84198e422a176a3d3d949e834d6847e7

SHA-1:
a1e716fb1d40b322ea3121ffcfadb62491ec6010

SHA-256:
1ccc871ef6a00bd3993ce8b9e3f70045c0022aa9b4a03c61faa3dc75979e61ac

Scanner detections:
9 / 68

Status:
Potentially unwanted

Analysis date:
11/14/2024 9:33:23 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
Adware/Playbryte.B
7.11.112.218

Baidu Antivirus
Trojan.MSIL.Adware
4.0.3.131126

Comodo Security
ApplicUnwnt
17253

Dr.Web
Adware.Downware.302
9.0.1.0241

ESET NOD32
MSIL/Adware.iBryte (variant)
7.9032

Malwarebytes
PUP.PlayBryte
v2013.08.29.12

NANO AntiVirus
Trojan.Win32.Downware.beifez
0.26.0.56179

Reason Heuristics
Unnamed.Threat.27
14.3.1.0

VIPRE Antivirus
iBryte
23266

File size:
336 KB (344,064 bytes)

Product version:
1.0.0.0

Original file name:
Installer.PlayBryte.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\installer.playbryte.exe

File PE Metadata
Compilation timestamp:
5/18/2012 11:01:05 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:M7LdlbxFlRg3tx6Uu8Rhv4DfmX9+xykuHm5TZKw9lprPbDJ0wBD07oS9pdzK8AxK:adlbrg3tYUuahA6X95kuG5TZKw9DrP3e

Entry address:
0x552FE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.3886

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
333 KB (340,992 bytes)

The file Installer.PlayBryte.exe has been seen being distributed by the following URL.

Remove Installer.PlayBryte.exe - Powered by Reason Core Security