When we install the file downloaded from the URL Specified below, then avast detects a threat which says :“A potentially suspicious file’stublogic.exe’ was blocked while installation.”
We used the following version of Avast for execution:
Yes, and I noted that the actual download itself took about 25-30 seconds or so to complete, so some agent or other was interfering or was coming along with the download, even tho the file itself is only about 1 meg in size. A 1 meg file should normally only take one sec or so to download with current internet connection.
It appears that whatever it was failed to run in sandboxed environment (many malicious files automatically detect a sandboxed environment and will not run to evade detection by a/v vendors), hence the delay in completing the download.
Looks like urlquery.com detection is correct as well. This is a malicious file, IMO, but it is not necessarily the file itself, other than it is a PUP, but the unknown other stuff that is attached or linked to it, that is the real malicious stuff. Avoided that issue by running in a sandbox.