boost.dll

Boost Shopping

The module boost.dll, “Boost is an application designed to help you compare products and prices while you shop online.” by Boost Shopping has been detected as adware by 4 anti-malware scanners. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘Boost’.
Publisher:
Boost  (signed by Boost Shopping)

Product:
Boost

Description:
Boost is an application designed to help you compare products and prices while you shop online.

Version:
3.0.1.6

MD5:
b7c59fe17a8fdcfc31e1207248de9b81

SHA-1:
b0f28e2fb045302b536007b907b47c43893d617d

SHA-256:
ffc038787ff13f95e7ab8c4635407ab5194e164306547d17ba46fae6c2e481a3

Scanner detections:
4 / 68

Status:
Adware

Analysis date:
12/24/2024 12:57:02 PM UTC  (today)

Scan engine
Detection
Engine version

AVG
Generic
2016.0.2950

Dr.Web
Adware.Shopper.920
9.0.1.0294

Malwarebytes
PUP.Optional.Boost.A
v2015.10.21.11

Reason Heuristics
PUP.Betwikx.BoostShopping (M)
15.10.21.11

File size:
482.4 KB (494,000 bytes)

Product version:
3.0.1.6

Copyright:
(C) 2014 Boost Shopping. All right reserved.

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\boost\boost.dll

Digital Signature
Signed by:

Authority:
Symantec Corporation

Valid from:
5/13/2015 3:00:00 AM

Valid to:
8/12/2016 2:59:59 AM

Subject:
CN=Boost Shopping, O=Boost Shopping, L=Bellevue, S=Washington, C=US

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
56BE18B038839D1B74FAC83C3F051C21

File PE Metadata
Compilation timestamp:
6/15/2015 10:41:32 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:BCcwRKAyYUBe6KmzGKFsI1fjDohS/s6PY:VwRpUBe6KmzGKFRDx06g

Entry address:
0x26FE2

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, B3, D3, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 8B, 4C, 24, 04, F7, C1, 03, 00, 00, 00, 74, 24, 8A, 01, 83, C1, 01, 84, C0, 74, 4E, F7, C1, 03, 00, 00, 00, 75, EF, 05, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8B, 01, BA, FF, FE, FE, 7E, 03, D0, 83, F0, FF, 33, C2, 83, C1, 04, A9, 00, 01, 01, 81, 74, E8, 8B, 41, FC, 84, C0, 74, 32, 84, E4, 74...
 
[+]

Entropy:
6.1628

Code size:
246 KB (251,904 bytes)

Internet Explorer BHO
Display name:
Boost

CLSID:
{2299856A-6506-42E3-A34F-CD35A47C1B19}


Remove boost.dll - Powered by Reason Core Security