boost.dll

Boost Shopping

The module boost.dll, “Boost is an application designed to help you compare products and prices while you shop online.” by Boost Shopping has been detected as adware by 2 anti-malware scanners. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘Boost’.
Publisher:
Boost  (signed by Boost Shopping)

Product:
Boost

Description:
Boost is an application designed to help you compare products and prices while you shop online.

Version:
3.0.1.3

MD5:
519923170c079056624083da46e3e67a

SHA-1:
c919d6f6457b43b57543a2218980f38db70ed102

SHA-256:
36adb5d15884d486029713b8918662ffbdee796fb36f5e2de4df99afa0cb7579

Scanner detections:
2 / 68

Status:
Adware

Analysis date:
12/24/2024 11:52:46 AM UTC  (today)

Scan engine
Detection
Engine version

Malwarebytes
PUP.Optional.Boost.A
v2015.05.26.11

Reason Heuristics
PUP.BoostShopping
15.5.26.23

File size:
482.4 KB (494,000 bytes)

Product version:
3.0.1.3

Copyright:
(C) 2014 Boost Shopping. All right reserved.

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\boost\boost.dll

Digital Signature
Signed by:

Authority:
Symantec Corporation

Valid from:
5/12/2015 8:00:00 PM

Valid to:
8/11/2016 7:59:59 PM

Subject:
CN=Boost Shopping, O=Boost Shopping, L=Bellevue, S=Washington, C=US

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
56BE18B038839D1B74FAC83C3F051C21

File PE Metadata
Compilation timestamp:
5/26/2015 3:25:37 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:RCcwRKAyYUBe6KmzGKFsI1fjDohSYsnPR:FwRpUBe6KmzGKFRDxnnJ

Entry address:
0x26FE2

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, B3, D3, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 8B, 4C, 24, 04, F7, C1, 03, 00, 00, 00, 74, 24, 8A, 01, 83, C1, 01, 84, C0, 74, 4E, F7, C1, 03, 00, 00, 00, 75, EF, 05, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8B, 01, BA, FF, FE, FE, 7E, 03, D0, 83, F0, FF, 33, C2, 83, C1, 04, A9, 00, 01, 01, 81, 74, E8, 8B, 41, FC, 84, C0, 74, 32, 84, E4, 74...
 
[+]

Code size:
246 KB (251,904 bytes)

Internet Explorer BHO
Display name:
Boost

CLSID:
{2299856A-6506-42E3-A34F-CD35A47C1B19}


Remove boost.dll - Powered by Reason Core Security