Submission Summary:

What's been foundSeverity Level
Capability to send out email message(s) with the built-in SMTP client engine.
Downloads/requests other files from Internet.

 

Technical Details:

 

File System Modifications

#Filename(s)File SizeFile Hash
1 %CommonDesktopDir%\Amazon Cloud Player.lnk 1,852 bytes MD5: 0xAF771CE4ECCD78749E407CD29C8F227C
SHA-1: 0xEAE35EFE738CC3238944805D66DDFFF2D6D786F9
2 %CommonPrograms%\Amazon\Amazon MP3 Downloader\Amazon MP3 Downloader.lnk 890 bytes MD5: 0x5F31B9E741193782F442AA4DDE142E6F
SHA-1: 0x68145D33556CF976E3AFE8194483A3A8A5EF29B5
3 %CommonPrograms%\Amazon\Amazon MP3 Downloader\Uninstall Amazon MP3 Downloader.lnk 840 bytes MD5: 0x7975F27524735AD2A7F6527896DD9929
SHA-1: 0xF1D43222B065028883B0A1EF0291E351FADECD9E
4 %AppData%\Amazon\MP3 Downloader\amazonmp3.db 9,216 bytes MD5: 0xA9DF5EA28D2F4DF2C5EC2D81F43DED29
SHA-1: 0x9D82ECC34B1C469C74B89536356A83379DB3463C
5 %Temp%\AmazonMP3AlbumArt.png 7,468 bytes MD5: 0x8AE24B4FE4C40BD52D3566EB11457C87
SHA-1: 0xD256F82260017B259608C37E3968D263812DC4D8
6 %Temp%\AmazonMP3Logo.png 5,551 bytes MD5: 0xC7A27323142EF318EAE667AE3F8E8CB2
SHA-1: 0x26BCDE6C7F19495852F2D3B39DEFCD9994A58CD8
7 %MyDocuments%\Amazon MP3\logs\amdlog.txt 3,448 bytes MD5: 0x0C967D383E3C70C759D07E6547BC9D80
SHA-1: 0x39F3F3FB4B4158AEABCE4129BBB6C2D455A75D6B
8 %ProgramFiles%\Amazon\MP3 Downloader\Amazon Cloud Player.url 155 bytes MD5: 0xC8A174AC1A75576EC57A2F27992EC7B5
SHA-1: 0x864683902B7DAB4792B9DD730FF8187B6CE68D11
9 %ProgramFiles%\Amazon\MP3 Downloader\AmazonMP3Downloader.exe 3,450,472 bytes MD5: 0x86CB641A000C3224A51EDE2D3B806619
SHA-1: 0x4307D285FD2726C2A44A0476B00B7D66B0AED045
10 %ProgramFiles%\Amazon\MP3 Downloader\cacert.pem 1,120 bytes MD5: 0xFE54C2CA9C6CD617C7170FF036B3A6E2
SHA-1: 0x2699EBFC9F91E685283CB11DAF24557C60A9EBA9
11 %ProgramFiles%\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin.dll 1,172,072 bytes MD5: 0xEBD27B24F7925C686D2EB59BC3BC3BA2
SHA-1: 0x37199CC104844B62809107A34A2520BD73465FB2
12 %ProgramFiles%\Amazon\MP3 Downloader\Readme.html 10,982 bytes MD5: 0x6194073C766B7DA0FF4358E7CB75DA94
SHA-1: 0xB14C241B4975E47716D62B92F49F367358917CD9
13 %ProgramFiles%\Amazon\MP3 Downloader\translations\de_DE.xml 26,894 bytes MD5: 0x7F401559ABA574F495374B57823F8B77
SHA-1: 0x6515F8019BDD3E90928951DAC555A492B549B7FF
14 %ProgramFiles%\Amazon\MP3 Downloader\translations\en_GB.xml 24,966 bytes MD5: 0xB925BAA1235ABD21E55FB9ABFA55297F
SHA-1: 0x717A6C53340331FE6A0CCDB07D8D77313E478E96
15 %ProgramFiles%\Amazon\MP3 Downloader\translations\en_US.xml 24,946 bytes MD5: 0x1EA92E5BB2D580BFD2810EA4250C4FFC
SHA-1: 0x08D0CC553480DAD37B8FB2B890A29F51A928C64E
16 %ProgramFiles%\Amazon\MP3 Downloader\translations\fr_FR.xml 27,803 bytes MD5: 0x2D234DE6AB085BD4B786DF9F15DE6297
SHA-1: 0xDE3AA616AB0936738F0B2F31505D478B74ADC16F
17 %ProgramFiles%\Amazon\MP3 Downloader\translations\ja_JP.xml 30,574 bytes MD5: 0xABD9BA1B89D40A02ECB2A4B22329BA50
SHA-1: 0xD553C6722CD95F76F134D4501B3A01D6CCF51065
18 %ProgramFiles%\Amazon\MP3 Downloader\Uninstall.exe 77,269 bytes MD5: 0x2924EBC07579A73F2A24FB48AAC9F3B0
SHA-1: 0xCB168D25E9E532742C86365ABF8F0444437B80E6
19 [file and pathname of the sample #1] 1,637,016 bytes MD5: 0x4352C8942C275161E788A40669959171
SHA-1: 0x705DE541750291A0D7617EB2FE19C841C3EC6138

 

Memory Modifications

Process NameProcess FilenameMain Module Size
amazonmp3downloader.exe%ProgramFiles%\amazon\mp3 downloader\amazonmp3downloader.exe3,502,080 bytes

 

Registry Modifications

 

Other details

Remote HostPort Number
72.21.194.180

 

 

All content ("Information") contained in this report is the copyrighted work of Threat Expert Ltd and its associated companies ("ThreatExpert") and may not be copied without the express permission of ThreatExpert.

The Information is provided on an "as is" basis. ThreatExpert disclaims all warranties, whether express or implied, to the maximum extent permitted by law, including the implied warranties that the Information is merchantable, of satisfactory quality, accurate, fit for a particular purpose or need, or non-infringing, unless such implied warranties are legally incapable of exclusion. Further, ThreatExpert does not warrant or make any representations regarding the use or the results of the use of the Information in terms of their correctness, accuracy, reliability, or otherwise.

Copyright © 2014 ThreatExpert. All rights reserved.