Help API Feed Maltego Contact                        

Malware > 28ef66c587fd6644bbc2fecb6223f589

Is this malicious?

Reports
https://malwr.com/analysis/ZDI5NWViY2JhNDQ5NDFjM2J...    
https://www.hybrid-analysis.com/sample/d1278b20cfd...    
MD528ef66c587fd6644bbc2fecb6223f589
SHA1811970d144cd5a8e5af930a002baa5f842f2c974
FilenamePlay Video Now.exe
Domains   [download1.torrentex.ru]
[this.classive.ru]
[download.torrentex.ru]
[diun.intences.ru]
[www.mediafire.com]
[cdnssl.mediafire.com]
[fonts.googleapis.com]
[tundra.site]
[fonts.gstatic.com]
[ajax.googleapis.com]
IP Addresses   [5.149.254.68]
[5.149.255.181]
[205.196.120.6]
[23.74.76.18]
[173.194.203.95]
[148.62.4.84]
[216.58.194.195]
[172.217.3.42]
[198.232.124.20]
[31.13.74.7]
Antivirus[ADWARE/InstallMon.IE]
[Artemis!28EF66C587FD]
[BundleApp.XSG]
[PUA.Installmonstr]
[PUP/Win32.InstallMonster]
[Signed-Downware.InstallMonstr]
[SoftwareBundler:Win32/InstallMonster]
[Trojan.InstallMonster.1341]
[W32.HfsAdware.A5E8]








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information