home

Daily Best Offers.exe

Daily Best Offers

BANANAS MEDIA

The application Daily Best Offers.exe by BANANAS MEDIA has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Kiwy Media Inc  (signed by BANANAS MEDIA)

Product:
Daily Best Offers

Version:
1.0.1

MD5:
ac2a37f79d90a2df3c35d22c2f4a5fc0

SHA-1:
a43bca1188e68e152a0c666f3b618521c5b2e633

SHA-256:
21d7cb28b396fca04e407a99a0edceabe18c8863bc7114e5f7e42f2aa0df78d4

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/23/2024 5:04:36 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Downloader (M)
16.7.15.10

File size:
52.5 KB (53,792 bytes)

Product version:
1.0.1

Copyright:
Copyright © 2015

Original file name:
Daily Best Offers.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\roaming\kiwy media inc\dbo\daily best offers.exe

Digital Signature
Signed by:
BANANAS MEDIA

Authority:
thawte, Inc.

Valid from:
8/11/2015 1:00:00 AM

Valid to:
8/11/2016 12:59:59 AM

Subject:
CN=BANANAS MEDIA, O=BANANAS MEDIA, L=PARIS, S=PARIS, C=FR

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
6DA942780D04295679C2C70A33576AA4

File PE Metadata
Compilation timestamp:
8/17/2015 1:28:52 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
768:gyFXwESqN8uVv/7ToXTlqmIKnKMgGAFiZUD2DwESqN8uVv/7ToXsYcqi86kRoVS/:gyXaq8XZqjMgGAFiZU6Daq8X9iaf/

Entry address:
0x934E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
29 KB (29,696 bytes)

Remove Daily Best Offers.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.