setup.zip
The file setup.zip has been detected as a potentially unwanted program by 5 anti-malware scanners. It uses the OpenCandy monitzation platform which will donwload and install offers in the setup for potentially unwanted software including ad/search-supported toolbars. The file has been seen being downloaded from napiprojekt.pl.
MD5:
2fecd428d78b43923538478fcf7aaec1
SHA-1:
e208e3a0df44f5c253baa5c224044d9211ab9554
SHA-256:
cc888b524e29d3813fbaee5c10e99b935d3a449dda88cbb99b4611be581be1b1
Scanner detections:
5 / 68
Status:
Potentially unwanted
Explanation:
Packages the OpenCandy software bundler that offers to install additional software and may include web browser add-ons and toolbars which display advertising (based on publisher settings and geo context).
Analysis date:
11/27/2024 3:28:34 AM UTC (today)
Scan engine
Detection
Engine version
Avira AntiVirus
PUA/OpenCandy.Gen
8.3.2.2
ESET NOD32
Win32/OpenCandy potentially unsafe application
7.0.302.0
F-Prot
W32/OpenCandy.A.gen
v6.4.7.1.166
G Data
Win32.Application.OpenCandy
15.11.25
NANO AntiVirus
Riskware.Win32.OpenCandy.dsocau
0.30.26.4437
File size:
9 MB (9,391,243 bytes)
Common path:
C:\users\{user}\downloads\setup.zip
The file setup.zip has been seen being distributed by the following URL.