SecurityHome.eu SoftwareBundler:Win32/OxyPumper

Home / malware PDF

SoftwareBundler:Win32/OxyPumper

First posted on 30 April 2019.
Source: Microsoft
Aliases :
There are no other names known for SoftwareBundler:Win32/OxyPumper.
Explanation :
Installation

You might download this application by mistake when you try to install a free music program or other application. When you run this application, it might look like the following:

We have also seen this program advertising for an MP3 music download:

In some cases, the program will also ask you to install another app named Giga Clicks, Hyper Browser, or Idle Browse. This other app is click fraud malware that we detect as Win32/Clikug.

Payload

Installs Win32/Clikug

This program has been known to download and install Win32/Clikug. This malware family can use your internet connection to perform click fraud.

Analysis by Geoff McDonald
Last update 30 April 2019

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20