» java_setup.zip
Overview
Analysis
File Details
Downloads (1)

java_setup.zip

The file java_setup.zip has been detected as a potentially unwanted program by 4 anti-malware scanners. It uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions. The file has been seen being downloaded from cdn.downloadbinfiles.net.

File name:

java_setup.zip

MD5:

35e8d5e08a5104cb4173851bd4705594

SHA-1:

73ee5c0a306d4dfdedc89710de31ef2d32425be5

SHA-256:

d10c17efe9d7342caf987a1052d3f7c7df9ff09635fb2b63a2985d2f757d2d3d

Scanner detections:

4 / 68

Status:

Potentially unwanted

Explanation:

Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Analysis date:

11/15/2024 1:06:14 AM UTC (today)

Scan engine

Detection

Engine version

AVG

InstallCore

2016.0.3011

Dr.Web

infected with Trojan.InstallCore.1151

9.0.1.05190

ESET NOD32

Win32/InstallCore.TP potentially unwanted application

7.0.302.0

VIPRE Antivirus

Trojan.Win32.Generic

43050

File size:

858.4 KB (878,957 bytes)

Common path:

C:\users\{user}\downloads\java_setup.zip

The file java_setup.zip has been seen being distributed by the following URL.

http://cdn.downloadbinfiles.net/c?x=C/avl39nIOsDKNNeFrQIxNsZ/NyTsCvXLiH cHGoP/U=&c=AU1M PGmRZk6aOCql/0wDnVD6xXEEM0TFHl33f6XBkw6mZCC2R6XP/wTzBoMlyDHx96b4tvDUf9y1363Fv0zHciHlNoRi2JoJmm4l6yWuVwlxR43KbYapq6LjwtxTkPi2jynTV amjTCZRju/6AUbg==&downloadAs=Java_Setup.exe&fallback_url=https://s3-eu-west-1.amazonaws.com/.../java.exe

Remove java_setup.zip - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.