adc_qd00000.exe

MPC AdCleanerSetup

DotCash Limited

The application adc_qd00000.exe, “MPC AdCleaner Setup Application” by DotCash Limited has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
DotC United Inc  (signed by DotCash Limited)

Product:
MPC AdCleanerSetup

Description:
MPC AdCleaner Setup Application

Version:
1.8.9726.0310

MD5:
abb36bef6d90d9deb192037ee5056dfb

SHA-1:
8a96803e5ae0204a6ef86ad0400745cf89ecb7b0

SHA-256:
75e57e919f408a4069b33f45ac718c1a8dba3b9557e7485b8f82069af7a02385

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/25/2024 6:10:44 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.DotC.MPC (M)
17.3.13.4

File size:
40.7 MB (42,653,512 bytes)

Product version:
1, 8, 9726, 0310

Copyright:
Copyright (C) 2015 DotC United Inc. All Rights Reserved

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\mpc cleaner\exe\adc_qd00000.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
1/7/2015 5:30:00 AM

Valid to:
12/30/2016 5:29:59 AM

Subject:
CN=DotCash Limited, OU=IT, O=DotCash Limited, L=Hong Kong, S=Hong Kong, C=HK

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1C04DCC9BE35C558422BAFEF34984975

File PE Metadata
Compilation timestamp:
8/24/2012 8:01:47 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x371A

Entry point:
85, DF, 71, 03, F6, C0, 8B, 02, DB, 69, ED, 5B, 68, 56, 09, C7, C0, 96, 47, 79, FF, 68, 61, 89, 66, 00, 77, 01, 47, 89, C9, EB, 03, C6, C4, 14, E8, 3C, 00, 00, 00, 0C, 28, 42, 29, FE, 86, D4, F2, 69, E9, 2E, 61, A1, 7D, 38, CF, B7, 7F, 85, EB, BA, 2C, 4F, 00, 00, 89, DE, 81, EA, 65, 03, 00, 00, F2, 33, C9, 1B, F7, 84, DF, 8B, CA, F7, C0, CD, E0, 10, 6C, 81, E7, 40, A0, ED, 03, 81, C1, CB, 92, 00, 00, 3B, F1, 71, 05, F6, C2, FC, 89, CB, 86, F7, 0F, AF, DD, 80, DC, E4, 0F, AF, FD, F7, C7, 30, 48, F4, EE, 8D...
 
[+]

Entropy:
1.3340

Code size:
26 KB (26,624 bytes)

Remove adc_qd00000.exe - Powered by Reason Core Security