pazera_mp4_to_mp3.exe

Pazera MP4 to MP3

Pazera Jacek

The application pazera_mp4_to_mp3.exe, “Pazera MP4 to MP3 Setup ” by Pazera Jacek has been detected as a potentially unwanted program by 2 anti-malware scanners. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. The installer uses the InstallMonetizer platform which will donwload and install adware toolbars and other potentially unwanted software offers during setup. The file has been seen being downloaded from www.pazera-software.com.
Publisher:
Jacek Pazera   (signed by Pazera Jacek)

Product:
Pazera MP4 to MP3

Description:
Pazera MP4 to MP3 Setup

MD5:
4685fc65c1a215fe568f3e728044c30e

SHA-1:
626c32a860f99ffc2d2832136d95edeb67144d86

SHA-256:
8d30079f00c8d40b631a39c4dd8801a40e2e066fa3092ff184db4ee25aa5eed6

Scanner detections:
2 / 68

Status:
Potentially unwanted

Explanation:
Uses the InstallMonetizer distribution platform to bundle adware.

Analysis date:
12/25/2024 12:07:53 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/InstallMonetizer.AF potentially unwanted
9.11634

Reason Heuristics
PUP.InstallMonetizer.Bundle (M)
16.3.10.15

File size:
7.9 MB (8,316,096 bytes)

Product version:
1.0

Copyright:
Copyright © 2014 Jacek Pazera, http://www.pazera-software.com

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Digital Signature
Signed by:

Authority:
Unizeto Technologies S.A.

Valid from:
4/22/2013 10:27:14 PM

Valid to:
4/22/2014 10:27:14 PM

Subject:
E=jacekpazera@wp.pl, CN=Jacek Pazera, O=Pazera Jacek, C=PL

Issuer:
CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
5103818FAACDB8E172D504668A9D9521

File PE Metadata
Compilation timestamp:
10/9/2012 1:48:22 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:lIdV3hYpE/JuYissQ1YvMxzvfyV+4kf7UVsovtKESr:lG3SpKJugsGY20xVs+4r

Entry address:
0xF3BC

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 64, ED, 40, 00, E8, E8, 71, FF, FF, 33, C0, 55, 68, 89, FA, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 45, FA, 40, 00, 64, FF, 32, 64, 89, 22, A1, 48, 3B, 41, 00, E8, BE, F7, FF, FF, E8, 65, F3, FF, FF, 8D, 55, EC, 33, C0, E8, F7, C3, FF, FF, 8B, 55, EC, B8, 4C, 66, 41, 00, E8, 6A, 58, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, 4C, 66, 41, 00, B2, 01...
 
[+]

Entropy:
7.9896

Developed / compiled with:
Microsoft Visual C++

Code size:
59 KB (60,416 bytes)

The file pazera_mp4_to_mp3.exe has been seen being distributed by the following URL.

Remove pazera_mp4_to_mp3.exe - Powered by Reason Core Security