home

the binding of isaac afterbirth full version__12987_il33719.exe.gz

The file the binding of isaac afterbirth full version__12987_il33719.exe.gz has been detected as a potentially unwanted program by 7 anti-malware scanners. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install. The file has been seen being downloaded from www.striker19field.info and multiple other hosts.
MD5:
d985d054221949d0a35e919331821a17

SHA-1:
f69de54ff4461b1dfd52cdbf341498e0f389bb92

SHA-256:
a8e74fb287a13b6e7d436edd435d2c7e19aa755417033dd342c4f40b7d2e37b5

Scanner detections:
7 / 68

Status:
Potentially unwanted

Analysis date:
11/15/2024 4:40:50 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Malware-gen
2014.9-151213

AVG
BundleApp
2016.0.2896

ESET NOD32
Win32/Amonetize.MZ potentially unwanted application
7.0.302.0

Kaspersky
not-a-virus:AdWare.Win32.Amonetize
15.0.0.562

McAfee
Trojan.Artemis!A00A82715986
18.0.204.0

NANO AntiVirus
Riskware.Win32.Amonetize.dzbkzd
1.0.10.5081

Panda Antivirus
Generic Suspicious
15.12.13.03

File size:
744.9 KB (762,748 bytes)

Common path:
C:\users\{user}\downloads\the binding of isaac afterbirth full version__12987_il33719.exe.gz

The file the binding of isaac afterbirth full version__12987_il33719.exe.gz has been seen being distributed by the following 9 URLs.

http://www.striker19field.info/?vn=1.1.5.55&campid=14973&prefix=Unreal Tournament 1 Game&appname=Unreal Tournament 1 Game

http://www.screen1book.info/?vn=1.1.5.55&campid=4692&prefix=&ti1=MzI0MnwxNDQ0OTR8MTc0fDExNTI0MnwxNDQ5OTYwNjYwfGU5NjQwZWI5LTc3YTUtNGU4Zi1jZTkwLTI1ZGRjMTgxODA3NHw4OS43Ny4zMi41MXxhYjZjMWMyZjJhM2M2ZjUzY2RjYmIzOGIzM2ExMTkxYQ==&appname=Setup

http://www.striker19field.info/?vn=1.1.5.55&campid=14973&prefix=GTA San Andreas Game&appname=GTA San Andreas Game

http://www.striker19field.info/?vn=1.1.5.55&campid=15334&prefix=4shared&ti1=Mjc0IzU0MTQjNjQ5IzM2MTF8MjEyMjUzfERafDN8MXx8&appname=4shared

http://www.ice29water.info/randownload.php?pPkGQ0a6VNA2FWJmkEAgYzfRU1WXZhVAQCN3pEZFMjNwRXUGN/QWIIf2dSVVBudxUzCGElAVwHYnpJaV5/aQJRECQrFm0cMCYeFl84IxU0AiYhXABPMzxeMwQqd0YERCUnHz5Wdn8BTwN4e0V2Dy4jVQJCa39WIBkiN1kZCxsrFDkKFz1RGFMkaBMxBjc4VFwHYHlFaU0zOAFceCwXQR0FMCl C39jABoKUwkrZll4Eg8KHi8jaX01Z2YBJDtaCBVlUXsOOQgdBgk6aiV/.../AycFEQgFU1VsARwbHgYVPWkbfD0XB21WYTJREUZrAxU0AiYBXABPMzxWPRI1NFZcchI=

http://www.striker19field.info/?vn=1.1.5.55&campid=16832&prefix=Plants vs Zombies Garden Warfare&appname=Plants vs Zombies Garden Warfare

http://www.striker19field.info/?vn=1.1.5.55&campid=14973&prefix=Call Of Duty Black Ops 1 Game&appname=Call Of Duty Black Ops 1 Game

http://www.screen1book.info/?vn=1.1.5.55&campid=4692&prefix=&ti1=NDk2OHwxNDQ1MjZ8MTR8MTE1MjI5fDE0NDk5NjEwNzF8YTA3NzRjYjMtZWY1OC00NjAwLWM2Y2EtNjIxMDQ5M2E4YjU3fDIwMC4xMTUuMjQ4Ljg0fGFiNmMxYzJmMmEzYzZmNTNjZGNiYjM4YjMzYTExOTFh&appname=Setup

http://www.striker19field.info/?vn=1.1.5.55&campid=12987&prefix=The Binding of Isaac Afterbirth Full Version&appname=The Binding of Isaac Afterbirth Full Version

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.