tvapp__8821_i885283678_il5.exe

The application tvapp__8821_i885283678_il5.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup program which is used to install the application. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install. The file has been seen being downloaded from www.more-files.com.
MD5:
1f556b3ac997aa4897a4be8711af8f2a

SHA-1:
fc166ff3d8c5dd7d3db667c556261c995d894e95

SHA-256:
2d65bfd7c70615e714172a060c884c917cf169f1e93f532975b78738b43fa3d6

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/24/2024 5:34:29 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Amonetize (M)
16.8.28.17

File size:
317.7 KB (325,358 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\tvapp__8821_i885283678_il5.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
6144:MIYMh5al4Wn1C9mX33BcPBifmSeZpTR31T4aFbIuX78KiqCpHXh:MCh5alX+mX3xcPBaK1UaFDhU3h

Entry point:
85, A9, 00, 00, 00, 8B, 3D, BC, D2, 43, 00, 51, FF, D7, 33, C9, 89, 03, 66, 3B, 08, 74, 73, 8B, 03, BA, 27, 00, 00, 00, 66, 3B, 10, 75, 0D, 50, FF, D7, B9, 27, 00, 00, 00, 66, 3B, 08, 75, 5A, 8B, 03, BA, 27, 00, 00, 00, 66, 3B, 10, 75, 05, 50, FF, D7, 89, 03, 8B, 3B, 57, FF, 15, BC, D2, 43, 00, 8B, 55, 08, 89, 03, 2B, C7, D1, F8, 8D, 4C, 46, 02, 81, C2, 00, 20, 00, 00, 3B, CA, 0F, 83, AD, 00, 00, 00, 85, C0, 7E, 12, 2B, FE, 8D, 49, 00, 66, 8B, 0C, 37, 66, 89, 0E, 83, C6, 02, 48, 75, F3, 8B, 13, 8B, 3D, BC...
 
[+]

The file tvapp__8821_i885283678_il5.exe has been seen being distributed by the following URL.

Remove tvapp__8821_i885283678_il5.exe - Powered by Reason Core Security