tvapp__8821_i939021048_il2.exe

The application tvapp__8821_i939021048_il2.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup program which is used to install the application. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install. The file has been seen being downloaded from www.more-files.com.
MD5:
b6df445b51a3f9388dbba1275f3ad690

SHA-1:
c695b564a296e5b4580878a236b07d5ad65f4130

SHA-256:
2e22ffab719dd429c84bfe4636fa01a06f6f5c440a1807741eee0aa0d0e09ff4

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/24/2024 5:16:31 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Amonetize (M)
16.8.28.17

File size:
296.9 KB (303,981 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\tvapp__8821_i939021048_il2.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
6144:LIh+sm5atdwJnBYtjE1nexjyRGG4zKdgY0iHKRfCpBd7:8h+vatdwJBYt6AGIKdcVUr

Entry point:
8B, 45, 08, 8B, 40, 6C, C1, E8, 05, F7, D0, 83, E0, 01, 5D, C2, 04, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 55, 8B, EC, 8B, 45, 08, 8B, 4D, 0C, C1, E1, 05, 33, 48, 6C, 83, E1, 20, 31, 48, 6C, 33, C0, 5D, C2, 08, 00, CC, CC, CC, CC, CC, 55, 8B, EC, 83, EC, 18, A1, 18, B5, 44, 00, 33, C5, 89, 45, FC, 53, 8B, 5D, 08, 56, 8B, 75, 14, 85, F6, 75, 17, 5E, B8, 03, 40, 00, 80, 5B, 8B, 4D, FC, 33, CD, E8, C1, C7, 01, 00, 8B, E5, 5D, C2, 10, 00, 80, 7B, 30, 00, 75, 17, 5E, B8, 05, 40, 00, 80, 5B, 8B, 4D, FC...
 
[+]

The file tvapp__8821_i939021048_il2.exe has been seen being distributed by the following URL.

Remove tvapp__8821_i939021048_il2.exe - Powered by Reason Core Security