love at first sight free download game_2.exe

TrUsted APpS ddd

This is the OutBrowse Revenyou installer which bundles offers for additional third party applications that may be unwanted and installed without consent. The application love at first sight free download game_2.exe by TrUsted APpS ddd has been detected as adware by 16 anti-malware scanners. The program is a setup application that uses the OutBrowse Revenyou installer. According to AVG, this software downloads additional adware offers during setup.
Publisher:
IWJAH  (signed by TrUsted APpS ddd)

Product:
IWJAH

Version:
2848.15530.1332.9182

MD5:
df62f22e19b2a71d7d5229c900969072

SHA-1:
74803147d47a0ffe3a65f43bd16d06960a8d2291

SHA-256:
80a43b49c613fc6856f1b36094a8304f6adecec0add08e6d22eb866fafffd59d

Scanner detections:
16 / 68

Status:
Adware

Explanation:
Bundles additional adware offers during download and installation using the OutBrowse installer.

Description:
This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:
11/30/2024 8:44:51 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
PUA.OutBrowse
7.1.1

AhnLab V3 Security
PUP/Win32.OutBrowse
2015.06.04

avast!
Malware-gen
150602-1

AVG
Downloader
2016.0.3089

Dr.Web
infected with Trojan.OutBrowse.705
9.0.1.05190

ESET NOD32
Win32/OutBrowse.CE potentially unwanted application
7.0.302.0

Fortinet FortiGate
Riskware/OutBrowse
6/4/2015

K7 AntiVirus
Unwanted-Program
13.204.16140

Kaspersky
not-a-virus:AdWare.Win32.OutBrowse
15.0.0.543

McAfee
Adware-OutBrowse.g
5600.6745

NANO AntiVirus
Trojan.Win32.OutBrowse.dsioss
0.30.24.1636

nProtect
Trojan-Clicker/W32.OutBrowse.762128
15.06.04.01

Quick Heal
PUA.OutBrowse.A
6.15.14.00

Reason Heuristics
PUP.Outbrowse.Bundler
15.6.4.7

Trend Micro House Call
Suspici.EAD97A79
7.2.155

VIPRE Antivirus
Trojan.Win32.Generic
40824

File size:
744.3 KB (762,128 bytes)

Product version:
2848.15530.1332.9182

Copyright:
IWJAH

Trademarks:
IWJAH

File type:
Executable application (Win32 EXE)

Bundler/Installer:
OutBrowse Revenyou (using Nullsoft Install System)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\programs\love at first sight free download game_2.exe

Digital Signature
Authority:
thawte, Inc.

Valid from:
5/28/2015 8:00:00 AM

Valid to:
1/28/2016 7:59:59 AM

Subject:
CN=TrUsted APpS ddd, O=TrUsted APpS ddd, L=Dublin, S=Dublin, C=IE

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
2B1D177ADFDCE1D3164D7E7BBDE3E63E

File PE Metadata
Compilation timestamp:
12/6/2009 6:52:12 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:KU47U1LOTJM1VwKZSs75Y2UWIJVIuIPkaBP0mVBI0uuV4UK63bKjdIaRsquBfc8P:KE8JWT552ilc6w9ALKjdIaRh86

Entry address:
0x30FA

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 18, 1C, 45, 00, E8, F1, 2B, 00, 00, A3, 64, 1B, 45, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 98, 37, 43, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 60, DB, 44, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, A0, 47, 00, 50, 57, E8, 92, 28, 00, 00...
 
[+]

Entropy:
7.9839

Packer / compiler:
Nullsoft install system v2.x

Code size:
23.5 KB (24,064 bytes)

Remove love at first sight free download game_2.exe - Powered by Reason Core Security