home

prepreinstaller_win.exe

The application prepreinstaller_win.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup program which is used to install the application. The file has been seen being downloaded from d2c6njkuidynrf.cloudfront.net.
MD5:
c9173c799b41b6b14b1e6c7ca6f65f00

SHA-1:
3a4d61803298492df97ea756d1d1341d5c830948

SHA-256:
f1c0740d96cf9b6bd22d9cab0e850a97377f30d5bb29b3caa879124abed5e4d8

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/25/2024 1:13:47 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Downloader (M)
16.7.24.16

File size:
7 KB (7,168 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\prepreinstaller_win.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
192:s3NOgyuGXLFQH8nbQnkubPIn33+nbvwn/JW28M:s3NOyGZA8EVTIn+zwhh8

Entry point:
7A, 33, 8D, 33, 93, 33, 99, 33, A0, 33, A9, 33, AE, 33, B4, 33, BC, 33, C1, 33, C7, 33, CF, 33, D4, 33, DA, 33, E2, 33, E7, 33, ED, 33, F5, 33, FA, 33, 00, 34, 08, 34, 0D, 34, 13, 34, 1B, 34, 20, 34, 26, 34, 2E, 34, 33, 34, 39, 34, 41, 34, 46, 34, 4C, 34, 54, 34, 59, 34, 5F, 34, 67, 34, 6C, 34, 72, 34, 7A, 34, 7F, 34, 85, 34, 8D, 34, 92, 34, 98, 34, A0, 34, A5, 34, AB, 34, B3, 34, B8, 34, BD, 34, C6, 34, CB, 34, D1, 34, D9, 34, DE, 34, E4, 34, EC, 34, F1, 34, F7, 34, FF, 34, 04, 35, 0A, 35, 12, 35, 17, 35...
 
[+]

The file prepreinstaller_win.exe has been seen being distributed by the following URL.

http://d2c6njkuidynrf.cloudfront.net/prepreinstaller_win.exe

Remove prepreinstaller_win.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.