Categories: Adware

About “Win32/Adware.LoadMoney.AEO” infection

The Win32/Adware.LoadMoney.AEO is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Win32/Adware.LoadMoney.AEO virus can do?

Executable code extraction
Creates RWX memory
Possible date expiration check, exits too soon after checking local time
A process attempted to delay the analysis task.
Detects Avast Antivirus through the presence of a library
Attempts to remove evidence of file being downloaded from the Internet
Anomalous binary characteristics

Related domains:

forces.biozoro.ru

How to determine Win32/Adware.LoadMoney.AEO?


File Info:
crc32: 63122E0Emd5: 215037d0d9d30735b07e8a1a23b30c2cname: 1418899457_assassinscreed4blackflagtrainer6v100mrantifun.exesha1: a99d7db319c10244ce30f728954f9fcaf5c67b32sha256: 9e422f2ab4f39110396c615c8ac6b221e3bd55ed26aa56b6b35448aefbeed4d9sha512: 4471b2a664c496d3dbcdc4ad5454f7eab6b26a9629e08d6deeacf9fca8bf138cb96464e13517b1df4fb05e7db867692099feca8bc65c1f93909ae2cd52a4489cssdeep: 12288:90j7IswfarJRebmXx6Q2JwOSrMeE0VRhr:90QsKUSP4type: PE32 executable (GUI) Intel 80386, for MS Windows
Version Info:
LegalCopyright: Copyright 2013 Bunndle, Inc.  All rights reserved.InternalName: BunndleOfferManagerFileVersion: 1.0.0.4CompanyName: Bunndle, Inc.ProductName: Bunndle Stand-Alone Offer Manager, OM 2.4.0.0, 2013-09-18 11:24ProductVersion: 1.0.0.4FileDescription: Bunndle Stand-Alone Offer ManagerOriginalFilename: BunndleOfferManagerTranslation: 0x0409 0x04e4

Win32/Adware.LoadMoney.AEO also known as:

MicroWorld-eScan	Gen:Variant.Razy.11216
CAT-QuickHeal	PUA.Ogimant.OL9
McAfee	Packed-CQ
Malwarebytes	PUP.Optional.Bunndle
Arcabit	Trojan.Razy.D2BD0
Cyren	W32/S-b7023a5a!Eldorado
ESET-NOD32	a variant of Win32/Adware.LoadMoney.AEO
Avast	Win32:Installer-U [PUP]
ClamAV	Win.Trojan.Agent-978983
Kaspersky	not-a-virus:Downloader.Win32.LMN.rrta
BitDefender	Gen:Variant.Razy.11216
NANO-Antivirus	Trojan.Win32.LMN.dkpvsv
AegisLab	Troj.Downloader.W32.CodecPack
Ad-Aware	Gen:Variant.Razy.11216
Emsisoft	Gen:Variant.Razy.11216 (B)
Comodo	Application.Win32.LoadMoney.RA
F-Secure	Gen:Variant.Razy.11216
DrWeb	Trojan.LoadMoney.336
VIPRE	Trojan.Win32.Generic.pak!cobra
McAfee-GW-Edition	BehavesLike.Win32.Packed.gh
Sophos	Troj/LdMon-J
Jiangmin	Packed.Krap.evjn
Avira	PUA/LoadMoney.Gen7
Antiy-AVL	RiskWare[Downloader]/Win32.LMN.rrta
Microsoft	SoftwareBundler:Win32/Ogimant
AhnLab-V3	PUP/Win32.LoadMoney
GData	Gen:Variant.Razy.11216
VBA32	Malware-Cryptor.Limpopo
AVware	Trojan.Win32.Generic.pak!cobra
Panda	Trj/Genetic.gen
Rising	PE:Malware.Generic(Thunder)!1.A1C4 [F]
Ikarus	Packer.Win32.Krap
Fortinet	W32/Kryptik.CTUA!tr
AVG	Win32/Cryptor
Qihoo-360	QVM20.1.Malware.Gen