Beware of virus on fake MediaMonkey.store [edited]
Posted: Sun Aug 07, 2022 7:49 pm
Careful with this download folks (Online Threat Prevention): (DO NOT Open!!) Trojan.Hulk.Gen.1 So, it Triggered Multiple warnings and needed disinfected: "MediaMonkeyc.zip" this zip file available on the store link contains something NASTY. On the link mediamonkey.store Get MediaMonkey Today ->Standard Version->Get basic functionality->Free-->Download V5
C:\Users\XXXXX\AppData\Local\Temp\Temp1_MediaMonkeyc.zip\MediaMonkey\MediaMonkeySetup.exe=>(CAB Sfx g)=>SETUP_~2.EXE
I uploaded the file to VirusTotal and its conclusive (I'm a Security Architect/ Engineer and do this for a living) http://www.virustotal.com/gui/file/40e1 ... 00/details
Apparently... 9 security vendors flagged this file as malicious and there's some pretty trusted names on this list, like Microsoft.
Also, date of the Malware file is 7/30/2022 @ 4:54am so this may have been out there for about a week-ish
C:\Users\XXXXX\AppData\Local\Temp\Temp1_MediaMonkeyc.zip\MediaMonkey\MediaMonkeySetup.exe=>(CAB Sfx g)=>SETUP_~2.EXE
I uploaded the file to VirusTotal and its conclusive (I'm a Security Architect/ Engineer and do this for a living) http://www.virustotal.com/gui/file/40e1 ... 00/details
Apparently... 9 security vendors flagged this file as malicious and there's some pretty trusted names on this list, like Microsoft.
Code: Select all
ALYac
Trojan.Hulk.Gen.1
Avast
Win32:RATX-gen [Trj]
AVG
Win32:RATX-gen [Trj]
ESET-NOD32
A Variant Of MSIL/TrojanDownloader.Agent.MUZ
Kaspersky
HEUR:Trojan-Downloader.MSIL.PsDownload.gen
Microsoft
Trojan:MSIL/Remcos.FWM!MTB
Rising
Malware.SwollenFile!1.DDB4 (CLASSIC)
Trapmine
Suspicious.low .ml.score
VIPRE
IL:Trojan.MSILZilla.22453