» the wraith 1986 720p brrip x264 aac vice.exe
Overview
Analysis
File Details
Downloads (1)

the wraith 1986 720p brrip x264 aac vice.exe

VenusApp Software

This uses the software InstalleRex download manager which bundles a number of adware plugin and browser extensions and is distributed via TusFiles. The application the wraith 1986 720p brrip x264 aac vice.exe, “Installer for VenusApp Software” has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the Tarma Installer installer, however the file is not signed with an authenticode signature from a trusted source.

File name:

Publisher:

VenusApp Software

Product:

VenusApp Software

Description:

Installer for VenusApp Software

Version:

2014.8.20.1450

MD5:

296e2da973dae24aa058c6e04b50a3fa

SHA-1:

6a52cda2ddc5050fdcf95490c0295f41dac3c7fd

SHA-256:

2c9142669b363ba753deb437821164d89cb7f1ca8680ffe849460b382a18ac7f

Scanner detections:

1 / 68

Status:

Adware

Explanation:

Uses Web-Pick's 'File Product', an Installer which wraps various products and downloads and installs it silently through the process, hosted on TusFiles.

Analysis date:

1/13/2025 4:10:08 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

Adware.VenusApp.Installer (M)

16.6.30.2

File size:

310.9 KB (318,312 bytes)

Product version:

1.0.0.3

Original file name:

TSULoader.exe

File type:

Executable application (Win32 EXE)

Installer:

Tarma Installer

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\the wraith 1986 720p brrip x264 aac vice.exe

File PE Metadata

Compilation timestamp:

3/12/2013 3:51:45 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

6144:9rVbUzkuvcBYC47l2xwrVCvm4hnmVLQUT9z6pJPaNE1eoyKqO:9rGkuveY3170nmFg/y+e4qO

Entry address:

0x14DB

Entry point:

55, 8B, EC, 81, EC, 2C, 06, 00, 00, 53, 56, 33, DB, 57, 66, 89, 9D, DC, FB, FF, FF, 89, 5D, F4, 89, 5D, FC, FF, 15, 74, 30, 40, 00, A3, 08, 44, 40, 00, FF, 15, 70, 30, 40, 00, 8B, F8, 8D, 45, EC, 50, FF, 15, 6C, 30, 40, 00, FF, 15, 68, 30, 40, 00, 8B, F0, F7, D6, 33, F7, FF, 15, 64, 30, 40, 00, 33, F0, 8B, 45, F0, 33, 45, EC, 68, 04, 01, 00, 00, 33, F0, 8D, 85, D4, F9, FF, FF, 50, 53, FF, 15, 60, 30, 40, 00, 85, C0, 75, 41, FF, 15, 5C, 30, 40, 00, 83, F8, 78, 75, 1A, 68, A8, 32, 40, 00, E8, 43, FB, FF, FF... 
[+]

Entropy:

7.9538

Developed / compiled with:

Microsoft Visual C++

Code size:

7.5 KB (7,680 bytes)

The file the wraith 1986 720p brrip x264 aac vice.exe has been seen being distributed by the following URL.

http://maxdocumentsitefun.info/.../The Wraith 1986 720p BRRip x264 aac vice.exe

Remove the wraith 1986 720p brrip x264 aac vice.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.