home

mystarttb_5.6.0.6_samba.exe

The application mystarttb_5.6.0.6_samba.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup program which is used to install the application. The file has been seen being downloaded from mystart.toolbarstart.com.
MD5:
19275233a72cd55db4bb65b4bb7a4ae8

SHA-1:
a9120562f6875e282afc1f418c2ba28314c6b35d

SHA-256:
e5b0a05d2e5878097e6bc1f7a112e59bebc0896957018da0441628023d6de31f

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/15/2024 3:49:03 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.MyStart (M)
16.4.11.17

File size:
310 Bytes

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\mystarttb_5.6.0.6_samba.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
6:pn0+Dy9xwSEBnNEr6VoFhBRZsLHVp628pKRCELMUshILbzEcXaoD:J0+oxNEBnNRShBRa155seLnEma+

Entry point:
3C, 21, 44, 4F, 43, 54, 59, 50, 45, 20, 48, 54, 4D, 4C, 20, 50, 55, 42, 4C, 49, 43, 20, 22, 2D, 2F, 2F, 49, 45, 54, 46, 2F, 2F, 44, 54, 44, 20, 48, 54, 4D, 4C, 20, 32, 2E, 30, 2F, 2F, 45, 4E, 22, 3E, 0A, 3C, 68, 74, 6D, 6C, 3E, 3C, 68, 65, 61, 64, 3E, 0A, 3C, 74, 69, 74, 6C, 65, 3E, 34, 30, 30, 20, 42, 61, 64, 20, 52, 65, 71, 75, 65, 73, 74, 3C, 2F, 74, 69, 74, 6C, 65, 3E, 0A, 3C, 2F, 68, 65, 61, 64, 3E, 3C, 62, 6F, 64, 79, 3E, 0A, 3C, 68, 31, 3E, 42, 61, 64, 20, 52, 65, 71, 75, 65, 73, 74, 3C, 2F, 68, 31...
 
[+]

The file mystarttb_5.6.0.6_samba.exe has been seen being distributed by the following URL.

http://mystart.toolbarstart.com/download/.../mystartTb_5.6.0.6_samba.exe

Remove mystarttb_5.6.0.6_samba.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.