00000000

CHummer

Maxiget Software

This is part of a bundled installer which provides applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed with minimal consent. The file 00000000, “Description is empty” by Maxiget Software has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Elit -e - Company  (signed by Maxiget Software)

Product:
CHummer

Description:
Description is empty

Version:
3, 5, 13, 0

MD5:
c239de9975da622bff8bfd437ab34e46

SHA-1:
9eaa434e3f4eece296c12965f44048eaf5dc31fd

SHA-256:
fdb2e5330fd7eb9197ba995807cdf19a2879fb0c8c4d5a07325afcccb3c29f92

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
12/23/2024 11:41:05 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.New IT Limited (M)
17.3.16.2

File size:
37.3 KB (38,240 bytes)

Product version:
3, 5, 13, 0

Copyright:
2014

Trademarks:
No

Original file name:
DHelper

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\google\chrome\user data\default\file system\003\t\00\00000000

Digital Signature
Authority:
Maxiget CA

Valid from:
6/18/2014 11:55:18 AM

Valid to:
2/18/2016 11:55:17 AM

Subject:
CN=Maxiget Software

Issuer:
CN=Maxiget CA

Serial number:
17A0EA9F

File PE Metadata
Compilation timestamp:
9/5/2014 5:53:24 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x3210

Entry point:
55, 8B, EC, 83, E4, F8, 83, EC, 0C, 53, 56, 57, 8D, 44, 24, 10, 50, C7, 44, 24, 14, 08, 00, 00, 00, C7, 44, 24, 18, 20, 00, 00, 00, FF, 15, 00, 40, 40, 00, 68, 28, 0A, 00, 00, 68, A0, 1F, B9, 00, 6A, 00, FF, 15, 94, 40, 40, 00, 6A, 00, 68, 80, 00, 00, 00, 6A, 03, 6A, 00, 6A, 01, 68, 00, 00, 00, 80, 68, A0, 1F, B9, 00, FF, 15, 8C, 40, 40, 00, 8B, F8, 83, FF, FF, 0F, 84, 30, 01, 00, 00, E8, BA, E3, FF, FF, 57, 8B, 3D, 90, 40, 40, 00, 8A, D8, FF, D7, 84, DB, 0F, 84, 18, 01, 00, 00, 66, 83, 3D, C8, A0, 40, 00...
 
[+]

Entropy:
5.3128

Developed / compiled with:
Microsoft Visual C++

Code size:
9 KB (9,216 bytes)

Remove 00000000 - Powered by Reason Core Security