» jfilemanager.exe
Overview
Analysis
File Details
Downloads (1)

jfilemanager.exe

The application jfilemanager.exe has been detected as a potentially unwanted program by 8 anti-malware scanners. This program installs potentially unwanted software on your PC at the same time as the software you are trying to install, without adequate consent. The file has been seen being downloaded from ttb.lpcloudsvr401.com.

File name:

jfilemanager.exe

MD5:

703034423d3a73abcf1f4014dbfb4eb8

SHA-1:

4375f687a2c14707c6c1542e0d471855e690db85

SHA-256:

9955cb4692f42c27d9aee5d6762c32c224f59effbd7b914654a1871b671f94bc

Scanner detections:

8 / 68

Status:

Potentially unwanted

Analysis date:

12/26/2024 12:14:58 PM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:DomaIQ-EB [PUP]

160216-0

AVG

Adware Skodna.Generic_r.IA

2015.0.4530

Dr.Web

Trojan.PayInt.27

9.0.1.05190

ESET NOD32

Win32/DomaIQ.AY.gen potentially unwanted application

7.0.302.0

F-Secure

Riskware.Application.Bundler.DomaIQ

5.15.21

Kaspersky

not-a-virus:AdWare.Win32.Lollipop

15.0.0.562

Norman

Application.Bundler.DomaIQ.Q

29.02.2016 03:11:57

Reason Heuristics

PUP.Softpusle (M)

16.3.8.2

File size:

447 KB (457,756 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\jfilemanager.exe

File PE Metadata

Compilation timestamp:

1/9/2014 4:46:35 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

6144:8OeTIfnjAEkxJPNeahuRqQb3fgnFwFGLgJ2k0SyCKF1pYax6uYj+LJYp:zAEOJPNeahQrgjLgJoSyCuDYax6hjX

Entry address:

0xCCE2

Entry point:

E8, 94, 5E, 00, 00, E9, 78, FE, FF, FF, 6A, 0C, 68, 88, 22, 42, 00, E8, C4, 04, 00, 00, 83, 65, E4, 00, 8B, 75, 08, 3B, 35, 58, 88, 42, 00, 77, 22, 6A, 04, E8, 7F, 60, 00, 00, 59, 83, 65, FC, 00, 56, E8, 86, 68, 00, 00, 59, 89, 45, E4, C7, 45, FC, FE, FF, FF, FF, E8, 09, 00, 00, 00, 8B, 45, E4, E8, D0, 04, 00, 00, C3, 6A, 04, E8, 7A, 5F, 00, 00, 59, C3, 8B, FF, 55, 8B, EC, 56, 8B, 75, 08, 83, FE, E0, 0F, 87, A1, 00, 00, 00, 53, 57, 8B, 3D, 70, D0, 41, 00, 83, 3D, 1C, 85, 42, 00, 00, 75, 18, E8, 3A, 57, 00... 
[+]

Entropy:

7.3984

Code size:

110.5 KB (113,152 bytes)

The file jfilemanager.exe has been seen being distributed by the following URL.

http://ttb.lpcloudsvr401.com/download/request/.../aoBOTf3m?__tc=1389535832.235&utm_source=Advertisedotcom&utm_term=co.uk&tgu_src_lp_domain=www.filesbunker.com&utm_medium=CPC&utm_campaign=aoBOTf3m&utm_content=63640-1060_1051_gb

Remove jfilemanager.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.