DealWifi.exe

Deal Wifi Component

RAFO TECHNOLOGY INC

The application DealWifi.exe by RAFO TECHNOLOGY INC has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
RAFO TECHNOLOGY INC  (signed and verified)

Product:
Deal Wifi Component

Description:
DEAL Wifi

Version:
1.0.11.26688

MD5:
4702f090d58e470ee106c12ae56d2996

SHA-1:
e6ade9d015bd2ac634d38566bb34e48bc19b51bc

SHA-256:
657a51b6ebc01617ae3581ae99c053a025f8f41d10856f8d6de81fbb1534d58e

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/26/2024 11:19:05 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.RafoTech (M)
17.2.20.12

File size:
47.2 KB (48,352 bytes)

Product version:
1.0.11.26688

Copyright:
Copyright (c) 2011-2017 RAFO TECHNOLOGY INC

Original file name:
DealWifi.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\dealwifi\dealwifi.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
1/20/2017 12:53:56 AM

Valid to:
4/18/2019 2:50:02 AM

Subject:
CN=RAFO TECHNOLOGY INC, O=RAFO TECHNOLOGY INC, L=Alhambra, S=California, C=US

Issuer:
CN=GlobalSign CodeSigning CA - G3, O=GlobalSign nv-sa, C=BE

Serial number:
189058EB912897C11845508E

File PE Metadata
Compilation timestamp:
1/19/2017 8:29:52 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

Entry address:
0x14EC

Entry point:
E8, E0, 02, 00, 00, E9, 4C, FE, FF, FF, 55, 8B, EC, FF, 15, 20, 20, 40, 00, 6A, 01, A3, 54, 33, 40, 00, E8, 51, 05, 00, 00, FF, 75, 08, E8, 4F, 05, 00, 00, 83, 3D, 54, 33, 40, 00, 00, 59, 59, 75, 08, 6A, 01, E8, 37, 05, 00, 00, 59, 68, 09, 04, 00, C0, E8, 38, 05, 00, 00, 59, 5D, C3, 55, 8B, EC, 81, EC, 24, 03, 00, 00, 6A, 17, E8, 5B, 05, 00, 00, 85, C0, 74, 05, 6A, 02, 59, CD, 29, A3, 38, 31, 40, 00, 89, 0D, 34, 31, 40, 00, 89, 15, 30, 31, 40, 00, 89, 1D, 2C, 31, 40, 00, 89, 35, 28, 31, 40, 00, 89, 3D, 24...
 
[+]

Code size:
3 KB (3,072 bytes)

Remove DealWifi.exe - Powered by Reason Core Security