ThreatInfo Detection Digest: May 27, 2026

ThreatInfo research digest

A concise set of new file reports that were not used in recent digests. Each entry includes the detection name, MD5 hash, and a direct report link so analysts can verify the exact sample before taking action.

New report links20

Tracked categories5

Primary actionVerify hash

Category overview

Adware4 new reports PUP/PUA4 new reports Trojan4 new reports Ransomware4 new reports Virus4 new reports

Reports worth opening

Adware

Review browser changes, bundled installers, extensions, and unexpected advertising behavior.

Filensy7D11.tmp

DetectionAdware.Gen

MD5fbfec94b4be3344424528bf1ba0e09f6

Filensp9733.tmp

DetectionAdware.Gen

MD5f9dabbde034c44a12af5789d4b2b77d3

FileA0641920.dll

DetectionAdware.ELEX

MD590384600c295d8db7fc5dcbd941ee1cc

Fileappadxcontrol.dll

DetectionUnder review

MD54bc70ae4d5c7be84cc47ae9cfc5fd5c6

PUP/PUA

Check whether the file came from an installer bundle, optimizer, updater, or optional offer.

FilelibGLESv2 (1).dll#A0DFDC2314AA4519

DetectionAdware.SweetIM

MD53cd3f6a9ca86b295086448d18f623a49

Fileavcodec-54 (1).dll#8E64C2626ADB224E

DetectionAdware.SweetIM

MD528918719e99b7af995bb222d6a0558bc

FilelibPokki (1).dll#5D1240F54B29E155

DetectionAdware.SweetIM

MD50ded43808d5b0613e64e1b2ae5f23e76

FileA0117167.exe

DetectionPUP.Toolbar

MD5bca1545f58cfbd93a1f239f0a078c3e1

Trojan

Verify the hash and origin before trusting the filename; trojans often imitate legitimate software.

Filehelper.exe

DetectionTrojan.Gen

MD5bab6a34666c2e14b1db995f7617f4851

FileA.I_1003H.EXE

DetectionSuspicious Object

MD53d5fa6d9aa8cf0087e59296463598c2e

FileFixAttrb ()Khoi phuc du lieu an).exe

DetectionTrojan.Gen

MD581ecb3e505949726364bfd699603fd59

FileWinSAP.dll

DetectionAdware.ELEX

MD59896325e7b2c61e0c083789794feef14

Ransomware

Prioritize isolation and backup checks when this class appears on an endpoint.

File9186.tmp.exe

DetectionTrojan.Packed

MD502e00de4670422f074fb74a7ed8517b9

Fileseed.exe

DetectionRansom.Wacatac

MD5299fa0349b3e2536a9d40d95674cfa96

File360zip.sfx

DetectionRansom.Wacatac

MD5c0dc3ea79dab77df4e5cc8dde00b210c

File5.exe

DetectionRansom.Wacatac

MD5a7ffc700eca3323c9bbe5aa9bd15f759

Virus

Look for copied or modified executables and scan related files created around the same time.

Filesetup.exe

DetectionVirus.Neshta

MD5f84116867f9fb368653dfe48d88bdd15

Fileoalinst.exe

DetectionVirus.Neshta

MD5f42b34caae83c7587d47070f3739a302

Filemediainfo.exe

DetectionVirus.Jeefo

MD53c8d56178cbe24ce1023b25fb6699e76

Filevcredist_x64.exe

DetectionVirus.Neshta

MD520268704661fe16262b71dc227b0e860

How to use this digest

Start with the MD5 hash, not the filename. If the hash or file path matches a system you manage, open the report, review the publisher and detection details, then scan the endpoint with GridinSoft Anti-Malware. ThreatInfo reports show whether GridinSoft already detects the file and which detection name is used.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.