» rise_of_nations_100.zip
Overview
Analysis
File Details
Downloads (1)

rise_of_nations_100.zip

The file rise_of_nations_100.zip has been detected as a potentially unwanted program by 4 anti-malware scanners. The setup routine uses the RevenYou.Com Pay Per Install platform (OutBrowse) which bundles additional software offers inclduing toolbars, extensions, PC utilities as well as other PUPs. The file has been seen being downloaded from tr.adsobject.com.

File name:

MD5:

39295a2a73bcca1025ef7cf23e6fd8fc

SHA-1:

01d71b9d979b00e7dd72898131a3547118e370ab

SHA-256:

e6c480c11a41955300a9ff9e34b7826b9293f3079a8d213085083eb96432d06f

Scanner detections:

4 / 68

Status:

Potentially unwanted

Explanation:

Bundles additional adware offers during download and installation using the OutBrowse installer.

Analysis date:

11/26/2024 2:31:13 AM UTC (today)

Scan engine

Detection

Engine version

Clam AntiVirus

Win.Adware.Outbrowse-1167

0.98/21070

ESET NOD32

Win32/OutBrowse.CL potentially unwanted application

7.0.302.0

Kaspersky

not-a-virus:HEUR:AdWare.Win32.OutBrowse

15.0.0.562

McAfee

Trojan.Adware-OutBrowse.h

18.0.204.0

File size:

312.4 KB (319,865 bytes)

Common path:

C:\users\{user}\downloads\rise_of_nations_100.zip

The file rise_of_nations_100.zip has been seen being distributed by the following URL.

http://tr.adsobject.com/.../?k=Rise of Nations 100&s=253

Remove rise_of_nations_100.zip - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.