photographedsheeran__15022_i1606974314_il1974535.exe.rar

The file photographedsheeran__15022_i1606974314_il1974535.exe.rar has been detected as a potentially unwanted program by 17 anti-malware scanners. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install. The file has been seen being downloaded from burkul.com.
MD5:
167d6c94936b173b7bbf1315194dda67

SHA-1:
edcdb549c7d1094bc85c568d14c3c3c7fa45276c

SHA-256:
dc95e04940aab6852a32814be9b149d857bce8dfd551fe49e8b0600fc2c11dfc

Scanner detections:
17 / 68

Status:
Potentially unwanted

Analysis date:
12/27/2024 3:12:24 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
ADWARE/Amonetize.kpb
8.3.2.2

Arcabit
PUP.Adware.Amonetize.eal
1.0.0.425

AVG
Generic
2016.0.3003

Baidu Antivirus
PUA.Win32.Amonetize
4.0.3.15829

Dr.Web
infected with Trojan.Amonetize.4075
9.0.1.05190

ESET NOD32
Win32/Amonetize.HG potentially unwanted application
7.0.302.0

Fortinet FortiGate
Adware/Amonetize
8/29/2015

F-Prot
W32/Amonetize.X.gen
v6.4.7.1.166

G Data
Win32.Application.Agent.QN6YH8
15.8.25

K7 AntiVirus
Unwanted-Program
13.2017046

Kaspersky
not-a-virus:AdWare.Win32.Amonetize
15.0.0.543

NANO AntiVirus
Riskware.Win32.Amonetize.dvccyq
0.30.24.3283

Panda Antivirus
Generic Suspicious
15.08.29.12

Qihoo 360 Security
Win32/Virus.Adware.528
1.0.0.1015

Sophos
Generic PUA KM (PUA)
4.98

Vba32 AntiVirus
Signed-AdWare.Amonetize
3.12.26.4

VIPRE Antivirus
Amonetize
43284

File size:
611.2 KB (625,868 bytes)

Common path:
C:\users\{user}\downloads\photographedsheeran__15022_i1606974314_il1974535.exe.rar

The file photographedsheeran__15022_i1606974314_il1974535.exe.rar has been seen being distributed by the following URL.