netflix.exe

Netflix Installer

Downloads Manager Ltd

The application netflix.exe by Downloads Manager has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software.
Publisher:
Downloads Manager  (signed by Downloads Manager Ltd)

Product:
Netflix Installer

Description:
Netflix PC App

Version:
1.0.0.0

MD5:
f3f13e71f737411ff4d3842c3dcea429

SHA-1:
7ff4645b4cac5f3662fba19c35b657703e960c6e

SHA-256:
1f37482d435434b950984ed02d7a2024aad93e4d20113866d8514890c0546f6a

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
12/26/2024 5:57:09 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.installCore (M)
16.11.12.17

File size:
2.9 MB (2,992,328 bytes)

Product version:
1.0.0.0

Copyright:
2014 Downloads Manager Ltd

Trademarks:
Made with Paquet Builder, http://www.installpackbuilder.com

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\netflix.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
5/15/2014 7:00:00 PM

Valid to:
5/16/2015 6:59:59 PM

Subject:
CN=Downloads Manager Ltd, O=Downloads Manager Ltd, STREET=Level 27 PWC Tower 188 Quay St, L=Auckland City, S=Auckland, PostalCode=1010, C=NZ

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
5E4DA60FFC5160823A52FCFF2AC150A9

File PE Metadata
Compilation timestamp:
6/30/2014 10:36:19 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.50

CTPH (ssdeep):
49152:U31lX9SWhQ1twjqv8N6NqfyTf9P9PhyGAcCyOZoB5IYMDw:UpIIqv2aTfvZyGAcBOZ85XME

Entry address:
0xA6A0

Entry point:
55, 89, E5, 6A, FF, 68, 90, 1B, 41, 00, 68, 98, BD, 40, 00, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 83, EC, 50, 53, 56, 57, 89, 65, E8, 68, 00, 00, 00, 02, E8, 40, 2F, 00, 00, 59, A3, A4, 30, 41, 00, E8, 35, 1A, 00, 00, 85, C0, 75, 0D, 6A, 01, E8, 6A, 1C, 00, 00, 59, E9, C2, 00, 00, 00, C7, 45, FC, 00, 00, 00, 00, E8, 68, 1C, 00, 00, E8, 23, 1D, 00, 00, E8, 6E, 1D, 00, 00, E8, 79, 21, 00, 00, E8, 14, 22, 00, 00, BB, 14, 29, 41, 00, 81, FB, 14, 29, 41, 00, 73, 0D, FF, 13, 83, C3, 04, 81, FB...
 
[+]

Entropy:
7.9795  (probably packed)

Code size:
61 KB (62,464 bytes)

Remove netflix.exe - Powered by Reason Core Security