boosti.dll

Boost

Boost Shopping

The module boosti.dll, “Boost is an application designed to help you compare products and prices while you shop online.” by Boost Shopping has been detected as adware by 2 anti-malware scanners.
Publisher:
Boost Shopping  (signed and verified)

Product:
Boost

Description:
Boost is an application designed to help you compare products and prices while you shop online.

Version:
4.0.3.5

MD5:
d41dfcff347471d40bf82ce348752884

SHA-1:
e726dcbb0f7e7138dca47811fdf518516e75a4ef

SHA-256:
f510fee779faa85f9821eedc8385e9838c63a105e3ecb7b3324a7bdd5eb9bd21

Scanner detections:
2 / 68

Status:
Adware

Analysis date:
11/23/2024 7:36:26 AM UTC  (today)

Scan engine
Detection
Engine version

Malwarebytes
PUP.Optional.Boost.A
v2015.05.28.01

Reason Heuristics
PUP.BoostShopping
15.5.27.21

File size:
445.9 KB (456,592 bytes)

Product version:
4.0.3.5

Copyright:
(C) 2014 Boost Shopping. All right reserved.

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\boost\boosti.dll

Digital Signature
Signed by:

Authority:
Symantec Corporation

Valid from:
5/13/2015 1:00:00 AM

Valid to:
8/12/2016 12:59:59 AM

Subject:
CN=Boost Shopping, O=Boost Shopping, L=Bellevue, S=Washington, C=US

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
56BE18B038839D1B74FAC83C3F051C21

File PE Metadata
Compilation timestamp:
5/26/2015 8:23:56 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
6144:8WrXeVBeES6RMMt2pU5irtiY7P9N8VOwAOZAOwNTBRPgu06:OdS6uMt2pUwhiVOw7aNTfI4

Entry address:
0x165E4

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, BD, A7, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, 10, 5B, 06, 10, E8, 6D, 4E, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, 8C, 91, 06, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, 60, 18, 05, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4...
 
[+]

Entropy:
6.5427

Developed / compiled with:
Microsoft Visual C++

Code size:
295 KB (302,080 bytes)

Remove boosti.dll - Powered by Reason Core Security