tvapp__8821_i939029767_il2.exe

The application tvapp__8821_i939029767_il2.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup program which is used to install the application. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install. The file has been seen being downloaded from www.more-files.com.
MD5:
a5b65172b352cf25fcbf5372e23ed2de

SHA-1:
b013a6925076b7eaf286c6d52124a3683257e139

SHA-256:
c7d308f1b3a8ffbb7bce64378f2736747d34e24ecd58f38e92aad3a64c057dde

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/24/2024 4:42:37 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Amonetize (M)
16.8.28.17

File size:
315.3 KB (322,857 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\tvapp__8821_i939029767_il2.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
6144:9AIIh+sm5atdwJnBYtjE1nexjyRGG4zKdgY0iHKRfCpBd7:9mh+vatdwJBYt6AGIKdcVUr

Entry point:
81, C1, FE, FF, 00, 00, 0F, B7, C9, 8D, 7C, 01, 05, 83, E7, FC, 8D, 42, 18, 85, F6, 75, 03, 8D, 42, 12, 66, 83, 38, 7B, 74, 4D, 8B, F7, 2B, F2, 56, 52, 8B, 55, 08, 52, 53, E8, 89, 1A, 02, 00, 83, C4, 10, 83, F8, 50, 0F, 87, 3F, FF, FF, FF, 0F, B6, 80, D4, 4F, 40, 00, FF, 24, 85, C4, 4F, 40, 00, 8B, 4D, 08, 8B, C1, 2B, CE, 03, DE, 89, 4D, 08, 3B, C8, 0F, 87, 1D, FF, FF, FF, 8B, 4D, FC, 51, E8, 92, FC, FF, FF, 83, C4, 04, 66, FF, 00, 8B, 45, F8, 40, 8B, D7, 89, 45, F8, 3B, 45, EC, 0F, 8C, 2B, FF, FF, FF, 8B...
 
[+]

The file tvapp__8821_i939029767_il2.exe has been seen being distributed by the following URL.

Remove tvapp__8821_i939029767_il2.exe - Powered by Reason Core Security