mc16yaol.exe

Downtown Media

The file mc16yaol.exe by Downtown Media has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The file has been seen being downloaded from intva31.adaptercommerce.info and multiple other hosts.
Publisher:
Downtown Media  (signed and verified)

MD5:
3527fd1b628201ab95cc2e028e9c2077

SHA-1:
e54625f502e877c3fab837a4079a2fcdc7240bcc

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/27/2024 2:42:28 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Vitallia.Downtown (M)
16.3.31.20

File size:
126.6 KB (129,608 bytes)

Common path:
C:\users\{user}\appdata\local\temp\mc16yaol.exe.part

Digital Signature
Signed by:

Authority:
GoDaddy.com, Inc.

Valid from:
3/8/2016 11:14:39 PM

Valid to:
3/8/2017 11:14:39 PM

Subject:
CN=Downtown Media, O=Downtown Media, L=San Francisco, S=California, C=US

Issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
00C86FE599444C83FF

The file mc16yaol.exe has been seen being distributed by the following 50 URLs.

http://intva31.adaptercommerce.info/dl-pure/1200543/.../?bc=1200543&checksum=598686&ephemeral=1&filename=adobe_flash_player.exe&cb=192279317&hashstring=pbZ3OiZPquqq&usefilename=true&executableroutePath=1201803&stub=true

Latest 30 of 57 download URLs

Remove mc16yaol.exe - Powered by Reason Core Security