home

jw-player_144939.exe

The application jw-player_144939.exe has been detected as a potentially unwanted program by 3 anti-malware scanners. The file has been seen being downloaded from www.com-about.com and multiple other hosts.
MD5:
94f448701d354f2693a06bb144a5677f

SHA-1:
36e5dee32316d25a2af467af246682a82751189f

SHA-256:
931379e2031e292f65e9be2db9a8bbe243caba8c735c5f55e061f20fca0629c7

Scanner detections:
3 / 68

Status:
Potentially unwanted

Analysis date:
11/27/2024 2:32:41 PM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Adware.Mutabaha.301
9.0.1.089

NANO AntiVirus
Riskware.Win32.Mutabaha.eaoiix
1.0.18.7201

Reason Heuristics
Adware.Mutabaha.DB (M)
16.6.16.15

File size:
3 MB (3,173,487 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\programs\jw-player_144939.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
24576:rNsJAeByoFhY2Oc2W8T8M5QT2pOnowyIbHu67T6ZEtsUSJNOvXY6G3gsvsFQQkaS:OJAek4u2i8COl6UAEA6VsQkaJ++Kio

Entry point:
0A, 4E, 6F, 74, 69, 63, 65, 3A, 20, 55, 6E, 64, 65, 66, 69, 6E, 65, 64, 20, 69, 6E, 64, 65, 78, 3A, 20, 63, 72, 65, 61, 74, 65, 5F, 6E, 65, 77, 5F, 6C, 69, 6E, 6B, 20, 69, 6E, 20, 2F, 68, 6F, 6D, 65, 2F, 77, 77, 77, 72, 6F, 6F, 74, 2F, 61, 62, 6F, 75, 74, 2F, 70, 75, 62, 6C, 69, 63, 5F, 68, 74, 6D, 6C, 2F, 77, 69, 6E, 37, 2F, 6C, 69, 62, 2F, 63, 6C, 61, 73, 73, 2E, 64, 61, 6F, 2E, 70, 68, 70, 20, 6F, 6E, 20, 6C, 69, 6E, 65, 20, 33, 32, 0A, 4D, 5A, 90, 00, 03, 00, 00, 00, 04, 00, 00, 00, FF, FF, 00, 00, B8...
 
[+]

Entropy:
5.8668

The file jw-player_144939.exe has been seen being distributed by the following 2 URLs.

http://www.com-about.com/download/.../eyebeam-1-5-for-windows.exe

http://www.com-about.com/download/.../ammyy-admin.exe

Remove jw-player_144939.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.