setup-ziggygames.exe

ZiggyTV

MP3Rocket

The application setup-ziggygames.exe, “ZiggyTV Setup Program” has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup and installation application, however the file is not signed with an authenticode signature from a trusted source. The installer uses the OpenCandy monitzation platform which will donwload and install offers in the setup for potentially unwanted software including ad/search-supported toolbars.
Publisher:
MP3Rocket

Product:
ZiggyTV

Description:
ZiggyTV Setup Program

Version:
5.1.2

MD5:
de4a3aeb443655c4f5172ba03c6ac9db

SHA-1:
a698c3b9ef3c0e4efc401672a60cb5ded7c95425

SHA-256:
c958b39a47a492f77143121a551d173710b6e5983964cf89ace6164ee04f3f99

Scanner detections:
1 / 68

Status:
Potentially unwanted

Explanation:
Packages the OpenCandy software bundler that offers to install additional software and may include web browser add-ons and toolbars which display advertising (based on publisher settings and geo context).

Analysis date:
1/12/2025 8:43:32 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.OpenCandy (M)
16.8.3.14

File size:
1.1 MB (1,190,265 bytes)

Product version:
5.1.2

Copyright:
Copyright © MP3Rocket

Original file name:
ZiggyTVSetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
1/29/2016 6:27:53 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

CTPH (ssdeep):
24576:HeMTCNix5ykhnKfca+OT0v4q0+7doGm8OphcBmvz:H1FxQkh/a+OT0v7paGQvKCz

Entry address:
0x4F6F2

Entry point:
E8, DD, 04, 00, 00, E9, 80, FE, FF, FF, 55, 8B, EC, 83, 25, 2C, AE, 4A, 00, 00, 83, EC, 2C, 53, 33, DB, 43, 09, 1D, D0, 82, 4A, 00, 6A, 0A, E8, D2, 84, 02, 00, 85, C0, 0F, 84, 74, 01, 00, 00, 83, 65, EC, 00, 33, C0, 83, 0D, D0, 82, 4A, 00, 02, 33, C9, 56, 57, 89, 1D, 2C, AE, 4A, 00, 8D, 7D, D4, 53, 0F, A2, 8B, F3, 5B, 89, 07, 89, 77, 04, 89, 4F, 08, 89, 57, 0C, 8B, 45, D4, 8B, 4D, E0, 89, 45, F4, 81, F1, 69, 6E, 65, 49, 8B, 45, DC, 35, 6E, 74, 65, 6C, 0B, C8, 8B, 45, D8, 35, 47, 65, 6E, 75, 0B, C8, F7, D9...
 
[+]

Code size:
527 KB (539,648 bytes)

The file setup-ziggygames.exe has been seen being distributed by the following URL.

Remove setup-ziggygames.exe - Powered by Reason Core Security