home

wajam_validate.exe

The application wajam_validate.exe has been detected as a potentially unwanted program by 8 anti-malware scanners. This file is typically installed with the program Open Downloader Manager by Installer Technology Co which is a potentially unwanted software program. According to AVG, this software downloads additional adware offers during setup. The file has been seen being downloaded from teabag.blob.core.windows.net and multiple other hosts.
MD5:
46f5c497f96e733176b010ff0ee56de3

SHA-1:
a836a8346f791ec8a83b51bc78e84b2f6659e6da

SHA-256:
561b6080396ba1218d886e7f4999918b3e85d50b4bfc05772c911cbe5af7947a

Scanner detections:
8 / 68

Status:
Potentially unwanted

Analysis date:
2/24/2025 10:33:23 PM UTC  (today)

Scan engine
Detection
Engine version

AVG
Downloader.Generic13
2014.0.3542

Dr.Web
Adware.Searcher.2593
9.0.1.0330

ESET NOD32
Win32/Wajam
8.9461

NANO AntiVirus
Trojan.Win32.Searcher.cjaztx
0.28.0.57029

Reason Heuristics
Threat.Win.Reputation.IMP
14.4.3.0

Trend Micro House Call
TROJ_GEN.R047H01HF13
7.2.239

Trend Micro
PAK_Generic.001
10.465.27

VIPRE Antivirus
Wajam
24866

File size:
11 KB (11,264 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\wajam_validate.exe

File PE Metadata
Compilation timestamp:
8/14/2013 12:36:33 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

CTPH (ssdeep):
192:YucR8gniwHla15UMi9q9bEBOrwic65Is6UqcnZuTgtnH3faOdaD7G1IpI:kRfniwHlZRBMKbKu+nXf5IS1A

Entry address:
0x92B0

Entry point:
60, BE, 00, 70, 40, 00, 8D, BE, 00, A0, FF, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75...
 
[+]

Entropy:
7.3095

Packer / compiler:
UPX 2.90LZMA]

Code size:
12 KB (12,288 bytes)

The file wajam_validate.exe has been discovered within the following program.

Open Downloader Manager  by Installer Technology Co
ODM is a download manager that plugs into various web browsers (IE, Chrome and Firefox). The installer is designed to bundle and offer various additional offers including toolbars and other potentially harmful programs.
opendownloadmanager.com
73% remove it
 
Powered by Should I Remove It?

The file wajam_validate.exe has been seen being distributed by the following 3 URLs.

https://teabag.blob.core.windows.net/public-source/downloadguide/resources/file/freemium/wajam/1.0/.../wajam_validate.exe

http://d3d6wi7c7pa6m0.cloudfront.net/bundles/.../wajam_validate.exe

http://www.wajam.com/.../wajam_validate.exe

Remove wajam_validate.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.