shri_hanuman_chal..._downloader.exe

The application shri_hanuman_chal..._downloader.exe has been detected as a potentially unwanted program by 3 anti-malware scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from dj234.yourfiledl.com.
MD5:
8bfdf011d0789f393821ca3a46b42ea7

SHA-1:
776b3b49c89b0fabe1e742a4bfe4ca3b525aaa34

SHA-256:
370c0a5144a5709bf8b7f856218d0a5adb7b935cf886d87ad1ced6511854c798

Scanner detections:
3 / 68

Status:
Potentially unwanted

Analysis date:
12/29/2024 12:50:54 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Downloader-VZP [PUP]
160518-2

AVG
Adware BundleApp_r.AX
2015.0.4568

Reason Heuristics
Adware.Bundler (M)
16.6.16.5

File size:
2.8 MB (2,944,838 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\shri_hanuman_chal..._downloader.exe

File PE Metadata
Compilation timestamp:
5/21/2015 1:15:05 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
49152:zEIgkzaO2cD7Qzplgy54Xli+NczQXqN6LjDq/mQJowyY1kPAv7i:IaNcplaXTNcP6LC/loXYaYvW

Entry address:
0x6C09E2

Entry point:
E9, A6, FE, 01, 00, 79, A9, 50, F5, D1, 54, 49, FA, AE, 5E, 43, 8F, 5C, B8, AC, EC, 5A, 46, 8E, 1E, 4E, 5E, F9, F9, 00, D0, 32, AE, 8A, 7A, 62, 12, 2A, DA, FE, 3E, D9, 57, 89, 9F, 8B, 5B, 4B, 0B, E2, 82, 52, 72, 25, 7B, 05, B5, D5, 6A, CA, 05, 86, 01, 80, B0, C8, 08, 46, 23, 32, 2B, AB, 33, 88, 84, D8, B9, AE, 10, 9F, 8B, 5E, 8E, CD, 18, 6D, 60, 4F, 63, 39, 4E, 93, 9A, 6A, A5, 5B, 1B, 42, 4A, EE, 2D, 6D, FC, 38, F8, A5, 57, 43, 0E, 4A, 0A, 5A, 0E, 6E, 85, E1, EE, 2F, D4, 88, 3A, 92, FF, BB, 68, CA, 4F, 29...
 
[+]

Entropy:
7.9994

Packer / compiler:
Xtreme-Protector v1.05

Code size:
1.1 MB (1,188,864 bytes)

The file shri_hanuman_chal..._downloader.exe has been seen being distributed by the following URL.

Remove shri_hanuman_chal..._downloader.exe - Powered by Reason Core Security