home

mediaget-2-01-2668-es-en-br-fr-de-it-win.exe

mediaget-installer Module

Media Get LLC

The application mediaget-2-01-2668-es-en-br-fr-de-it-win.exe, “MediaGet installer” by Media Get has been detected as a potentially unwanted program by 11 anti-malware scanners. This is a setup and installation application and has been known to bundle potentially unwanted software. The file has been seen being downloaded from ld.mediaget.com and multiple other hosts. While running, it connects to the Internet address 163-172-220-89.rev.poneytelecom.eu on port 80 using the HTTP protocol.
Publisher:
MediaGet LLC  (signed by Media Get LLC)

Product:
mediaget-installer Module

Description:
MediaGet installer

Version:
1.0

MD5:
46ebd68e793f7594d21505d2e98a3bb3

SHA-1:
d45d13608946786649dbbb0723349727e81eeec7

SHA-256:
5f1f65f401d30cc064d3702f66b3b5478427ee8d85f26e8ae2d9dbb57b63407d

Scanner detections:
11 / 68

Status:
Potentially unwanted

Analysis date:
11/2/2024 1:28:37 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
APPL/MediaGet.Gen5
7.11.129.216

AVG
Luhe.MediaGet.B
2015.0.3570

Comodo Security
Application.Win32.MediaGet.A
17740

ESET NOD32
Win32/MediaGet (variant)
8.9389

G Data
Win32.Adware.MediaGet
14.2.24

K7 AntiVirus
Trojan
13.175.11086

Kaspersky
not-a-virus:HEUR:Downloader.Win32.MediaGet
14.0.0.4347

Malwarebytes
PUP.Adware.MediaGet
v2014.02.07.01

Reason Heuristics
PUP.Installer.MediaGet.i
14.2.7.13

Sophos
MediaGet
4.97

Total Defense
Win32/Tnega.eSCbJaB
37.0.10744

File size:
846.8 KB (867,104 bytes)

Product version:
1.0

Copyright:
Copyright (c) 2011 MediaGet LLC

Original file name:
mediaget-installer.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\mediaget-2-01-2668-es-en-br-fr-de-it-win.exe

Digital Signature
Signed by:
Media Get LLC

Authority:
The USERTRUST Network

Valid from:
3/9/2011 2:00:00 AM

Valid to:
3/9/2014 1:59:59 AM

Subject:
CN=Media Get LLC, O=Media Get LLC, STREET=Sadovaya 53, L=Saint-Petersburg, S=Russia, PostalCode=190344, C=RU

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
71D26D579AEE6A768F27CF3B6D4E9A91

File PE Metadata
Compilation timestamp:
12/10/2013 1:29:55 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:fhXUe9UhbJQOSBrwkN933s1NAINN5cSzA:ZXTQxc93cNh8S8

Entry address:
0x1A81A0

Entry point:
60, BE, 00, A0, 54, 00, 8D, BE, 00, 70, EB, FF, 57, EB, 0B, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89, C5, EB, 0B, 01, DB, 75, 07, 8B...
 
[+]

Entropy:
7.9606

Packer / compiler:
UPX v0.89.6 - v1.02 / v1.05 -v1.24

Code size:
380 KB (389,120 bytes)

The file mediaget-2-01-2668-es-en-br-fr-de-it-win.exe has been seen being distributed by the following 50 URLs.

http://ld.mediaget.com/index2.php?l=es&r=moviezet.com_p&f=don-jon&s=Don Jon&bbls_client_id=15248978&bbl=1

http://sub2.bubblesmedia.ru/go/.../E0is4Y4t7KnX7bcikA=&param=G p4idC5HGs=&rid=120&s=??????? ? ????????? ??????? ????? XVI ?. — 1914 ?. ? ??????? ?????&r=kpnemo.ws&f=??????? ? ????????? ??????? ????? XVI ?. — 1914 ?. ? ??????? ?????&cs=utf-8

http://mediaget.com/torrent.php?r=x-drivers.com&fu=http://ez2.x-drivers.com/.../www.x-drivers.ru_cmedia_pci-8738-090520-8.17.37(w7-rc-01).zip&f=C-Media CMI8738 Windows 7 Driver v.8.17.37

http://dw3.uptodown.com/dl/1389547085/.../mediaget-2-01-2664-es-en-br-fr-de-it-win.exe

http://sub2.bubblesmedia.ru/go/?link=iCNpRW5K/o8VY2VuSfIohX6i2AykWW4S2vu 7LmKQEvB2WNRvydFHf/2eNUqfK861Nq6KEG/YD3rNXQ/.../zCbs=&rid=1310&s=FloENd Chat- ?????? ????? ???? ??? ?????? ??? download, FloENd Chat- ?????? ????? ???? ??? ?????? ???&r=yayil.com&f=FloENd Chat- ?????? ????? ???? ??? ?????? ??? download, FloENd Chat- ?????? ????? ???? ??? ?????? ???&cs=UTF-8&u=

http://mediaget.com/torrent.php?r=downloadscds.org&s=Grupo Revelação – Seleção Essencial 2013 &f=Grupo Revelação – Seleção Essencial 2013 &cs=UTF-8

http://sub2.bubblesmedia.ru/go/?link=EryPeEvj48s7kyG68bi4iBDptGrZVS V52xUfTl9zwLNwrWl0OZgW01sm1HZRcatuh2sn9bgBhcRssz/kJK20m AbFkQAcOZQy1a17Xj4U I/.../2WBV1kISOXCAYGPxP4BYVef9RfWTFFNwkw==&param=JuYlarWPsO0=&rid=408&s=Comer, rezar, amar de Elizabeth Gilbert Gratis | Descargar Libro Gratis Comer, rezar, amar | Libros Gratis de Elizabeth Gilbert,&r=tuslibrosgratis.net&f=Comer, rezar, amar de Elizabeth Gilbert Gratis | Descargar Libro Gratis Comer, rezar, amar | Libros Gratis de Elizabeth Gilbert,&cs=UTF-8&u=

http://sub2.bubblesmedia.ru/.../?link=BVHdX0zw7DTQKzFPes3hC4gADAnpdhwEkSs2Coc40rGXOVEZhpbScpKuyVc3XBwFpWqM6g9EfWIuU1kFQ7T1S9lPpy59KqVSvMaAPs5Jy06ulHMnoNKLgUxuDB cTYX75kvNpI9Hv9uWoNA3zcGSLj1NHjqaw8Frj5C2eAOkudR6XpthJXXRK9yj9Q==&param=pJ2c3n126Vc=&rid=957&s=venus en vivo. &r=telegratis.net&f=venus en vivo. &cs=UTF-8&u=

http://mediaget.com/download.php?ref_id=google&os=windows

http://sub2.bubblesmedia.ru/go/.../mwuCH3ePEDKLW5Wo3fFWbWUM=&param=7z5ZvltrV34=&rid=973&s=La Patrona Capitulo 80 Online | Novelas en Vivo&r=novelasenvivo.com&f=La Patrona Capitulo 80 Online | Novelas en Vivo&cs=ISO-8859-1&u=

http://mediaget.com/torrent.php?r=tudofull.com&s=– Metodologia do Trabalho Científico – Antônio Joaquim Severino&f=– Metodologia do Trabalho Científico – Antônio Joaquim Severino&cs=UTF-8

http://mediaget.com/torrent.php?r=fasttorrent&u=http://www.fast-torrent.ru/download/torrent/.../Bailout_The_Age_of_Greed.torrent&f=Bailout_The_Age_of_Greed.torrent

http://mediaget.com/download.php?os=windows

http://sub2.bubblesmedia.ru/go/?link=s5eXikilXpq 8mYnT9GC2pGH2Cp9kMs75RfaaKkrZzfjT0GEEJFfFWZ uulcf/5VlYcBUEwSlhNmA/TXulp srWZKKWKJWnxKIgqjJSD9u/o6QJ0/wlz9kpoXi7W0Bty/.../xNTbqC15zUlMCDH5Sqhgt2CqJ6utSHRxM=&param=4fJBA3FwZ4U=&rid=326&s=Mexico, la historia: 2- De la independencia a El Alamo |online&r=documaniatv.com&f=Mexico, la historia: 2- De la independencia a El Alamo |online&cs=UTF-8&u=

http://sub2.bubblesmedia.ru/go/?link=j5RFILDgrPQua6pXt7L/XCXerJaKJPrX7bJIxCU8C7O/F307dGZn9sduw7FPriwdhSTkPN5dce6BxjW/.../DHk59uyUxCw5phMzn3wmfyHXwlbnhEObfpg7S4v1sH1vGEw4Ix5dCP3UwmhQHVUoynjYLk45FB8wnYqI5v1ZrfQ==&param=MetoL6K39Vk=&rid=957&s=venus en vivo. &r=telegratis.net&f=venus en vivo. &cs=UTF-8&u=

http://mediaget.com/torrent.php?r=zerx.ru2&s=ucelevshiy&f=ucelevshiy

http://mediaget.com/torrent.php?r=baixarfilmesdublados.com.br&s=O Renascimento Gritos de Horror Baixar Dublado download series gratis rmvb&f=O Renascimento Gritos de Horror Baixar Dublado download series gratis rmvb&cs=UTF-8

http://soft2k.com/descargar

http://sub2.bubblesmedia.ru/.../?link=6FutjBUM9KmzbNfLj6S4Yk5iKGh6HU8LsGO0AfHHMLjV50Od2tbOn4VoBcCTts4tZ0vGuqKfLgoxfbSGoLe84oiUHrfWK9GB3GGYCSax1roEF3zDM od74rMzB0dbXoqO8lMEYol7zKn64II5F1jV3eZL0ASAJC4BQyXshbCDc2CtmR0wDfqWqyj9DQ=&param=Fqmdsmr9Big=&rid=1154&s=&r=robofilm.net&f=&cs=windows-1251&u=

http://mediaget.com/torrent.php?r=tuslibrosgratis.net&s=Dos Crimenes de Ibarguengoitia Jorge Gratis | Descargar Libro Gratis Dos Crimenes | Libros Gratis de Ibarguengoitia Jorge,&f=Dos Crimenes de Ibarguengoitia Jorge Gratis | Descargar Libro Gratis Dos Crimenes | Libros Gratis de Ibarguengoitia Jorge,&cs=UTF-8

http://mg.bubblesmedia.ru/index.php?redirect_url=http://.../index2.php?r=clickunder3

http://dw2.uptodown.com/dl/1393166933/.../mediaget-2-01-2668-es-en-br-fr-de-it-win.exe

http://mediaget.com/torrent.php?r=cwer&s=Uninstall Tool 3.3.3 Build 5320 Final&f=Uninstall Tool 3.3.3 Build 5320 Final

http://sub2.bubblesmedia.ru/go/?link=wAgXPgo56cHNdcWCguieXlXSSaXe ns1TmW19m7rBN/e5Z4AI0iswjkiXCX5Q8sUntToa4q8ZqS/.../Hj2s51trUhJqQMRjosQzLG3443ofj7WX8Hj7pghGExSUQGW5tLZNyqw GWAs=&param=nVvPkwUZPd4=&rid=693&s=Pro Evolution Soccer 2014 PSP &r=softgames.ws&f=Pro Evolution Soccer 2014 PSP &cs=UTF-8&u=

http://sub2.bubblesmedia.ru/go/?link=S/FprSrWtPwAqHrDaloN7mILQzqtJUIO/doM033YHNN2IbL9Xh/GS2wcAh7RU/y0OWTjPdaGt6oCT8CGwdK8F0c2HBk807O dUu9dQlY jU7o99ouv/Egsa36fCWB/UHzaDhXr68HZuh251S1dvZNp2hqb0ZVpfmDyTJNJfX8PhErztgfhOFY8Eu2g==&param=IHeUWe9XU24=&rid=979&s=???? ? ????-????? /.../ The Wolf of Wall Street (2013) DVDScr ???????? ??????&cs=windows-1251&u=

http://softwareapp-pro.s3.amazonaws.com/uploads/program_file/file_url/143/.../MediaGet_id3690297ids1s.exe

http://ld.mediaget.com/index2.php?l=es&r=moviezet.com_p&f=el-mayordomo&s=El Mayordomo&bbls_client_id=8978808&bbl=1

http://dw3.en.uptodown.com/dl/1394369121/.../mediaget-2-01-2668-es-en-br-fr-de-it-win.exe

http://sub2.bubblesmedia.ru/go/?link=YkBewax SuhStKCsrK9I7Q4zatl7PgHBK o8NYaT rx08OERA/.../P bujIxNt9wonPxsNc7lisLmB7sfXlPrvrE5OCraocw==&param=nMS07bokFvQ=&rid=408&s=El Descubrimiento de América de Geronimo Stilton Gratis | Descargar Libro Gratis El Descubrimiento de América | Libros Gratis de Geronimo Stilton,&r=tuslibrosgratis.net&f=El Descubrimiento de América de Geronimo Stilton Gratis | Descargar Libro Gratis El Descubrimiento de América | Libros Gratis de Geronimo Stilton,&cs=UTF-8&u=

http://dw3.fr.uptodown.com/dl/1396348825/.../mediaget-2-01-2668-es-en-br-fr-de-it-win.exe

Latest 30 of 53 download URLs

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):
Connects to sw90.ua-hosting.company  (91.215.156.143:80)

TCP (HTTP):
Connects to 163-172-220-89.rev.poneytelecom.eu  (163.172.220.89:80)

Remove mediaget-2-01-2668-es-en-br-fr-de-it-win.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.