» driverassist-setup.exe
Overview
Analysis
File Details
Downloads (1)

driverassist-setup.exe

DriverAssist

SafeBytes

The application driverassist-setup.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer, however the file is not signed with an authenticode signature from a trusted source. The file has been seen being downloaded from RevenueWire's affiliate distribution platform driverslk.safebytes.revenuewire.net.

File name:

Publisher:

SafeBytes

Product:

DriverAssist

Version:

1.0.11.0

MD5:

ecd1bd537469ca67a7a871cb2ca2d05d

SHA-1:

50e1c218f592aaeb6b624a78548fcf54281cdd94

SHA-256:

06caf10e5a00773902a19691664eba8db8b5af9b3c293c939b93aeeb6eda95d9

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

12/26/2024 12:41:03 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.SafeBytes.Optional.Installer.Meta (L)

16.6.6.18

File size:

11 MB (11,547,352 bytes)

Product version:

1.0.11.0

Trademarks:

Original file name:

Setup.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\driverassist-setup.exe

File PE Metadata

Compilation timestamp:

12/24/2013 9:03:33 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

196608:tGGRorCWGL5bZ1R/DvWyEqqpr07tRzF7r4sY46KomnPjU4JZphTUTNW6:tGWorS1RLvW6DRFYXmnFJZphITN3

Entry address:

0x37B3

Entry point:

60, D3, EF, 69, DA, 71, EB, ED, C4, B1, 43, 55, 57, 0F, BC, F0, 87, F3, 0F, BC, C2, 85, F1, 87, FD, EB, 02, 88, E6, C7, C2, C9, 5A, F6, 0D, 0F, A4, D3, BB, 0B, F0, 0F, AC, F7, C4, 69, D2, E2, 66, 75, 88, E8, 4B, 00, 00, 00, F3, 25, 23, 49, FF, 5B, F3, F3, 1A, D2, 0B, EE, 0F, C1, F2, 0F, AB, DA, 88, E2, 33, F6, 80, FE, FC, 03, F3, F6, D2, 89, D5, 0F, AF, E9, 86, F1, 8D, 06, B5, 3A, 0F, B7, CA, 42, 8B, D8, 69, EE, 9F, 93, C8, 4F, D3, E6, 6A, 00, 5F, C1, EE, A9, 0F, C8, 25, AF, EF, AD, 8B, 87, FB, 80, CD, 7E... 
[+]

Entropy:

7.9991 (probably packed)

Code size:

25.5 KB (26,112 bytes)

The file driverassist-setup.exe has been seen being distributed by the following URL.

http://driverslk.safebytes.revenuewire.net/driverassist/.../?o-download-help-click

Remove driverassist-setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.