pazera_free_mkv_to_avi_converter.exe

Pazera Free MKV to AVI Converter

Pazera Jacek

The application pazera_free_mkv_to_avi_converter.exe, “Pazera Free MKV to AVI Converter Setup ” by Pazera Jacek has been detected as a potentially unwanted program by 2 anti-malware scanners. This is a setup and installation application and has been known to bundle potentially unwanted software. The installer uses the InstallMonetizer platform which will donwload and install adware toolbars and other potentially unwanted software offers during setup. The file has been seen being downloaded from s7673.chomikuj.pl and multiple other hosts.
Publisher:
Pazera Jacek   (signed by Pazera Jacek)

Product:
Pazera Free MKV to AVI Converter

Description:
Pazera Free MKV to AVI Converter Setup

MD5:
a23b4d2400020c561cc630c217ab9728

SHA-1:
488f1891075a45f22603c38eb56e2b60cc2140aa

SHA-256:
d7a6e6b8a88871b09e9afe20f4eb4aa7ba9bf33231dacf796b39c628e14556aa

Scanner detections:
2 / 68

Status:
Potentially unwanted

Explanation:
Uses the InstallMonetizer distribution platform to bundle adware.

Analysis date:
12/25/2024 12:02:01 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/InstallMonetizer.AF
8.9085

Reason Heuristics
PUP.InstallMonetizer.Bundle (M)
16.3.10.15

File size:
5.3 MB (5,537,800 bytes)

Product version:
1.0

Copyright:
Copyright © 2012 Jacek Pazera, http://pazera-software.com

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\pazera_free_mkv_to_avi_converter.exe

Digital Signature
Signed by:

Authority:
Unizeto Technologies S.A.

Valid from:
5/10/2012 7:48:07 AM

Valid to:
5/10/2013 7:48:07 AM

Subject:
E=jacekpazera@wp.pl, CN=Jacek Pazera, O=Pazera Jacek, C=PL

Issuer:
CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
3235239474BA72D27A7E6ADD9FD85B75

File PE Metadata
Compilation timestamp:
10/9/2012 9:48:22 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:AkGcXxtYP2D0ZyYMq6kMY+c6BC6oHVxiNFErX9TgT3G9MyPBmVT8isT5K2EOAXLn:ANStCyX3vBC6oHrzZk69RmnYSD

Entry address:
0xF3BC

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 64, ED, 40, 00, E8, E8, 71, FF, FF, 33, C0, 55, 68, 89, FA, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 45, FA, 40, 00, 64, FF, 32, 64, 89, 22, A1, 48, 3B, 41, 00, E8, BE, F7, FF, FF, E8, 65, F3, FF, FF, 8D, 55, EC, 33, C0, E8, F7, C3, FF, FF, 8B, 55, EC, B8, 4C, 66, 41, 00, E8, 6A, 58, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, 4C, 66, 41, 00, B2, 01...
 
[+]

Entropy:
7.9953

Developed / compiled with:
Microsoft Visual C++

Code size:
59 KB (60,416 bytes)

The file pazera_free_mkv_to_avi_converter.exe has been seen being distributed by the following 3 URLs.

http://s7673.chomikuj.pl/File.aspx?e=HBHYCTJRN0cGeOwdP5FpiIq17qZDluAESS6EI3gi1RwBNTBfWuP8plVYEx4D0Evqexat1bZ9-1M4f0F6KfD8jUdb2YoGorRpAZ6rvMjclIT9ZNjY-fBWaBEbe5f8iwx_u2ZNC0M28S7FOYi6i8KGSyrrJJr70EB45mEHwyQdx-M&pv=2

Remove pazera_free_mkv_to_avi_converter.exe - Powered by Reason Core Security