Professional support on Windows software, PUAs removal.

VirusTotal

Tuesday, October 28, 2014

What's this "Critical update!", really?




I've just done a malware test: what's this "Critical update!" really?

update-for-pc-512.com's DOWNWARE Review

Here you go:

  1. Step 1: FakeAlerts, saying "WARNING! Current version of Adobe Flash Player is outdated! Your computer is vulnerable to malware. Update your Adobe Flash Player now."
  2. Step 2: A pop-up showed up without permission, warning "(Adobe Flash Player Update) Critical fix is ready to install. ..."
  3. Step 3: "You have chosen to open (save) adobe_flash_setup.exe... from update-for-pc-512.com"
  4. Step 4: "Setup... This will download the software on your computer. ... Step 1 of 4"

(Step 1)

(Step 2)



 (Step 3)


(Step 4)

According to update-for-pc-512.com...

In addition to managing the download of your selected software, the download manager may show commercial offers. Additional software may include toolbars, browser add-ons, game applications, anti-virus applications, and other types of applications. You are not required to install any additional software to receive your selected software.
If a sponsored software offer, like for example a toolbar, will be offered, it might change the User’s home page, default search settings and 404-error traffic, in the event the User selects such options.
Here's the VT file I got...
  • SHA256: 945a8a6c04bfd381c7289a7553395287b99bbf64d9cc99399d9e6bce4ef4b6ab
  • File name: adobe_flash_setup.exe
  • Detection ratio: 9 / 54
  • Publisher: OOO "Finans Servis"
  • MD5: c429f7adb513e14794790065d620e65b
As for the keyword "InstallCore", we found associated products (adware, greyware, etc) in the past few months. They are Free YouTube Downloader, Format Factory and so forth.

No comments:

Post a Comment