home

vero+visi+v21.1+proper_10924_i31139647_il345.exe.zip

The file vero+visi+v21.1+proper_10924_i31139647_il345.exe.zip has been detected as a potentially unwanted program by 8 anti-malware scanners. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install. The file has been seen being downloaded from files.red-3-small-button.com.
MD5:
d8b464761e366cf7a9812b85f4c46a97

SHA-1:
e2b4bb28124790359e0c6b40723ad66b07483a27

SHA-256:
0dc4aa56c2f49d2a58f958e5ef358b67afba338d0865539c2817243874b9eed6

Scanner detections:
8 / 68

Status:
Potentially unwanted

Analysis date:
1/15/2025 11:51:09 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Application.Imonetize.1
5695792

Dr.Web
infected with Trojan.Amonetize
9.0.1.05190

Emsisoft Anti-Malware
Gen:Application.Imonetize
10.0.0.5366

ESET NOD32
Win32/Amonetize.DW potentially unwanted application
7.0.302.0

Kaspersky
not-a-virus:Downloader.Win32.Agent
15.0.0.562

Norman
Gen:Application.Imonetize.1
07.10.2015 03:16:12

Reason Heuristics
PUP.Amonetize (M)
16.1.6.22

Sophos
PUA 'Amonetize'
5.21

File size:
1.4 MB (1,501,084 bytes)

Common path:
C:\users\{user}\downloads\vero+visi+v21.1+proper_10924_i31139647_il345.exe.zip

The file vero+visi+v21.1+proper_10924_i31139647_il345.exe.zip has been seen being distributed by the following URL.

http://files.red-3-small-button.com/p/.../Vero VISI V21.1 PROPER_10924_i31139647_il345.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.