home

sims_2.24591.exe

MediaMagnet Downloader

Digital Pine LLC

The application sims_2.24591.exe by Digital Pine has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The file has been seen being downloaded from mediamagnet.cc.
Publisher:
Digital Pine, LLC  (signed by Digital Pine LLC)

Product:
MediaMagnet Downloader

Version:
0.1.1.830

MD5:
58e185bcd68403f33a554a1dc158070f

SHA-1:
327a17b1581b4e9437824bf9f2309b54ad6476d8

SHA-256:
98053573ef883f3828d819e7ab0f0feea05a12b73d2e4d900a633d53721111f5

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/15/2024 11:41:54 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.DigitalPine (M)
16.5.26.23

File size:
685.9 KB (702,376 bytes)

Product version:
0.1.0.0

Copyright:
Copyright © 2013 Digital Pine, LLC

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\sims_2.24591.exe

Digital Signature
Signed by:
Digital Pine LLC

Authority:
COMODO CA Limited

Valid from:
7/29/2013 3:00:00 AM

Valid to:
7/30/2014 2:59:59 AM

Subject:
CN=Digital Pine LLC, O=Digital Pine LLC, STREET=6/2 Bibirevskaya str., L=Moscow, S=Moscow region, PostalCode=127549, C=RU

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
75BF21E3DA3613E8FA9E989AB75E8C4F

File PE Metadata
Compilation timestamp:
7/8/2014 8:04:49 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:1OHSeh+hSX2IcCxwoEnKo2sDZd3LTOmdNw888888888888W88888888888GEW88d:1wSbAmhCxwTdZTOmdhECV

Entry address:
0x82A41

Entry point:
53, FF, 34, 24, C7, 44, 24, 04, A4, F0, 83, DE, 66, 89, 04, 24, 9C, 68, 85, 7F, C6, 8B, C7, 44, 24, 08, 20, 0A, 91, AA, C6, 04, 24, 13, 9C, 8D, 64, 24, 0C, E9, 72, B9, 00, 00, FC, 9D, 61, 77, B1, 92, C2, 56, 71, 02, 02, AB, CE, 4F, 8F, 34, 2C, B9, 14, A9, D4, 81, 9C, 39, 54, D1, F9, 92, 1B, A9, 0C, 9D, D0, 41, B8, 3D, 21, A2, DB, C0, A9, 69, 84, F9, CA, 54, C3, 34, 30, 91, 46, 5D, A9, 71, EF, 8B, CE, B9, 07, 7C, E7, 78, B9, 28, F1, D0, 80, B1, 84, 01, C4, 7B, F8, 4B, 18, A9, 44, 8E, AC, 7C, 37, 6A, 75, E8...
 
[+]

Entropy:
6.6972

Code size:
331 KB (338,944 bytes)

The file sims_2.24591.exe has been seen being distributed by the following URL.

http://mediamagnet.cc/download?id=681&l=Sims 2&u=aHR0cDovL2xlZC1kb3NraS5jb20vdXBsb2Fkcy90b3JyZW50L3NpbXMtMi50b3JyZW50&f=Sims 2&type=

Remove sims_2.24591.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.