» java_update.zip
Overview
Analysis
File Details
Downloads (1)

java_update.zip

The file java_update.zip has been detected as a potentially unwanted program by 5 anti-malware scanners. It uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions. The file has been seen being downloaded from cdn.whitedownloadpool.com.

File name:

java_update.zip

MD5:

f24a8a9a5922d7a2c559a19b47982026

SHA-1:

4d459628d364e37a319194ca8048d68b4ae2074f

SHA-256:

8a43cdc58c980e4202890a1010a9a24443f036c74a8477883c9cf6f13f026c31

Scanner detections:

5 / 68

Status:

Potentially unwanted

Explanation:

Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Analysis date:

11/25/2024 10:27:03 AM UTC (today)

Scan engine

Detection

Engine version

AVG

InstallCore

2016.0.3017

Dr.Web

infected with Trojan.InstallCore.1027

9.0.1.05190

ESET NOD32

Win32/InstallCore.ABK potentially unwanted application

7.0.302.0

Sophos

PUA 'Install Core Click run software'

5.15

VIPRE Antivirus

InstallCore

42892

File size:

772.7 KB (791,214 bytes)

Common path:

C:\users\{user}\downloads\java_update.zip

The file java_update.zip has been seen being distributed by the following URL.

http://cdn.whitedownloadpool.com/c?x=YAFfjMr298gGPBjZTViQp/cquYUmSsr 0JagElbjVes=&c=kv3sH18hlTr8iMbOPP48BBgB1YAhenew6y96W442FUwdbo1sTLqV6AytdbG0zfSO4DTZf1lkm5SkA/4chGEU3knp68ODMJQ2mDV CcvIn3izciWXJhDoudvHeyIB493PSCq946y HohhfHG3oao69A==&downloadAs=Java_Update.exe&fallback_url=http://javadl.sun.com/webapps/.../AutoDL?BundleId=94214

Remove java_update.zip - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.