home

minecraft-setup.exe

Single Drip Interactive

The application minecraft-setup.exe by Single Drip Interactive has been detected as a potentially unwanted program by 21 anti-malware scanners. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. This program installs potentially unwanted software on your PC at the same time as the software you are trying to install, without adequate consent.
Publisher:
Single Drip Interactive  (signed and verified)

Product:
Single Drip Interactive

Version:
3.6.4.7936

MD5:
e031f101c1b95a0253c12c2424390489

SHA-1:
36cb62e60a37bde091cd58770f3060f961cf86d4

SHA-256:
4f9d0b2fa73e02584c348bba6d2733f064020fe04877f4790a81095b521f8c72

Scanner detections:
21 / 68

Status:
Potentially unwanted

Explanation:
Bundles additional software, mostly toolbars and other potentially unwanted applications using the Vittalia monitization installer.

Analysis date:
11/15/2024 4:51:50 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Application.Bundler.DownloadAdmin.4
5692214

Agnitum Outpost
Riskware.Agent
7.1.1

AhnLab V3 Security
Trojan/Win32.Bagsu
2015.12.08

Arcabit
Trojan.Application.Bundler.DownloadAdmin.4
1.0.0.628

avast!
Win32:Malware-gen
151206-0

AVG
Generic36
2016.0.2902

Bitdefender
Gen:Variant.Application.Bundler.DownloadAdmin.4
1.0.20.1710

Comodo Security
Application.Win32.DownloadAdmin.RP
23690

Dr.Web
Trojan.Vittalia.1353
9.0.1.05190

Emsisoft Anti-Malware
Gen:Variant.Application.Bundler.DownloadAdmin
10.0.0.5366

ESET NOD32
Win32/DownloadAdmin.P potentially unwanted application
7.0.302.0

F-Secure
Riskware.Gen:Variant.Application.Bundler
5.15.21

G Data
Gen:Variant.Application.Bundler.DownloadAdmin
15.12.25

IKARUS anti.virus
PUA.Win32.Dowadmin
t3scan.1.9.5.0

K7 AntiVirus
Adware
13.212.18027

MicroWorld eScan
Gen:Variant.Application.Bundler.DownloadAdmin.4
16.0.0.1026

Norman
Gen:Variant.Application.Bundler.DownloadAdmin.4
07.10.2015 03:16:12

Qihoo 360 Security
HEUR/QVM10.1.Malware.Gen
1.0.0.1077

Reason Heuristics
Threat.Win.Reputation.IMP
15.12.11.1

Rising Antivirus
PE:Adware.DownloadAdmin!1.A243 [F]
23.00.65.151206

VIPRE Antivirus
Threat.4783369
45588

File size:
870.6 KB (891,512 bytes)

Product version:
3.6.4.7936

Copyright:
Copyright (C) 2015

Original file name:
setup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\minecraft-setup.exe

Digital Signature
Signed by:
Single Drip Interactive

Authority:
GoDaddy.com, Inc.

Valid from:
11/20/2015 5:46:38 PM

Valid to:
10/13/2016 7:17:39 PM

Subject:
CN=Single Drip Interactive, O=Single Drip Interactive, L=San Francisco, S=California, C=US

Issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
00E87873DBE497C77E

File PE Metadata
Compilation timestamp:
12/2/2014 1:32:04 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:27vS6ZUTK+TFKXIiTiVfu8vGDrqfW4kFk0IIWUfq:S6TK6YtTCfleKuZG0IIQ

Entry address:
0x1670

Entry point:
E8, 9B, C2, 00, 00, E9, 9D, BB, 00, 00, CC, CC, CC, CC, CC, CC, 81, EC, 1C, 02, 00, 00, 53, 55, 8B, AC, 24, 28, 02, 00, 00, 56, 57, 6A, 01, 55, C7, 44, 24, 1C, 00, 00, 00, 00, E8, 2F, 53, 00, 00, E8, 20, BB, 00, 00, 8B, F0, 89, 44, 24, 18, 8D, 44, 24, 1C, 50, 6A, 00, 6A, 02, 55, E8, A5, 55, 00, 00, DD, 05, A0, FF, 40, 00, 8B, 4C, 24, 2C, DD, 5C, 24, 10, 83, C4, 10, 8B, F8, 8D, 14, 0F, 6A, 03, 55, 89, 54, 24, 28, E8, 23, 56, 00, 00, 83, C4, 10, E8, E1, BA, 00, 00, 8B, D8, 89, 5C, 24, 1C, 85, FF, 75, 33, 3B...
 
[+]

Entropy:
7.9689  (probably packed)

Code size:
52.5 KB (53,760 bytes)

Remove minecraft-setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.