ClickOnceSetup.exe

PopaJar Downloader

Downloadious

The application ClickOnceSetup.exe by Downloadious has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup and installation application and has been known to bundle potentially unwanted software.
Publisher:
Downloadious  (signed and verified)

Product:
PopaJar Downloader

Version:
1.0.5.43977

MD5:
bbac7bd0486357bff04380db4961f52b

SHA-1:
4cb51f2633c25c601771c00f82691342d5ab9183

SHA-256:
9bf5975e7099463486e1599bc0112b85ac03e73f54aa342d3cd2880b34ae937a

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/23/2024 8:23:05 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Downloadius (M)
17.3.15.23

File size:
935.9 KB (958,360 bytes)

Product version:
1.0.5.43977

Original file name:
ClickOnceSetup.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\apps\2.0\2tcd8o75.cxy\3mmk4kzl.pj5\clic..tion_0000000000000000_0001.0000_0555df0f972ca780\clickoncesetup.exe

Digital Signature
Signed by:

Authority:
GlobalSign nv-sa

Valid from:
6/30/2015 3:51:14 PM

Valid to:
6/30/2016 3:51:14 PM

Subject:
CN=Downloadious, O=Downloadious, L=San Diego, S=CA, C=US

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121B8DD145A7488213FB106C406886407DF

File PE Metadata
Compilation timestamp:
8/25/2015 9:07:53 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

Entry address:
0xE21FE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.8450

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
897 KB (918,528 bytes)

Remove ClickOnceSetup.exe - Powered by Reason Core Security