home

poweriso 6.4 terbaru full__2785_il4906.exe.gz

The file poweriso 6.4 terbaru full__2785_il4906.exe.gz has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install. The file has been seen being downloaded from www.striker5field.info and multiple other hosts.
MD5:
c76777d9c9e1c79d3af007cb99856d18

SHA-1:
362bcdf4a587ec13d98e668ebad79bb098d153d7

SHA-256:
a542a0695cea3677ab6a9a07bb5b6b71332340cad22486046b6f1b35384492ba

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/16/2024 12:36:03 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Amonetize.Meta (M)
16.6.23.0

File size:
615.9 KB (630,658 bytes)

Common path:
C:\users\{user}\downloads\poweriso 6.4 terbaru full__2785_il4906.exe.gz

The file poweriso 6.4 terbaru full__2785_il4906.exe.gz has been seen being distributed by the following 3 URLs.

http://www.striker5field.info/?vn=1.1.5.55&campid=3610&prefix=inSSIDer 4.0.0.20 for Windows Full Version (Serial Number)&appname=inSSIDer 4.0.0.20 for Windows Full Version (Serial Number)

http://www.striker5field.info/?vn=1.1.5.55&campid=16450&prefix=File&ti1=NDk2OHwxNzE3MTN8MTAzfDExNTIzMnwxNDUwMTc0NTY5fGRjZTM0M2RhLTBiZWYtNGQ1ZS1jZDM3LTMxMzQxODYzZGZlZXwxMTcuMjAxLjIwNS4xMHw3Njg5Y2U3NDFlYmRlODQ0YzE5NDg2YjJiMTk4OWU2Mg==&appname=File

http://www.striker5field.info/?vn=1.1.5.55&campid=2785&prefix=PowerISO 6.4 Terbaru Full&appname=PowerISO 6.4 Terbaru Full

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.