» driverassist-setup.exe
Overview
Analysis
File Details
Downloads (1)

driverassist-setup.exe

DriverAssist

SafeBytes

The application driverassist-setup.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup and installation application, however the file is not signed with an authenticode signature from a trusted source. The file has been seen being downloaded from RevenueWire's affiliate distribution platform driverslk.safebytes.revenuewire.net.

File name:

Publisher:

SafeBytes

Product:

DriverAssist

Version:

1.0.11.0

MD5:

ecc790e3d0ac84f92b2a93ffe47eb0a0

SHA-1:

ef35b18d8a8bfba8dcf34ece15d08f4684e6a094

SHA-256:

0d3ad5ca1992f26d374192e5c9d41e9c8900a013b8aa077807f5846fad211119

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

12/26/2024 12:52:42 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.SafeBytes.Optional.Installer.Meta (L)

16.6.6.8

File size:

11 MB (11,539,160 bytes)

Product version:

1.0.11.0

Trademarks:

Original file name:

Setup.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\driverassist-setup\driverassist-setup.exe

File PE Metadata

Compilation timestamp:

12/25/2013 10:33:33 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

196608:vHE7RorCWGL5bZ1R/DvWyEqqpr07tRzF7r4sY46KomnPjU4JZphTUTNW6:v8orS1RLvW6DRFYXmnFJZphITN3

Entry address:

0x37B3

Entry point:

8D, 1D, A8, C0, FA, 34, 88, F8, 50, FF, C3, B5, 5D, 69, F1, 0F, 6E, 50, B7, F7, C5, 39, 07, 26, 5B, 0F, B6, DA, B7, EE, 0B, CA, 1B, FB, F3, C7, C7, AD, A1, 95, 36, 81, F5, EF, 4C, 00, 00, B9, E1, 91, B4, FC, 35, BB, 41, B2, C6, 1C, C0, F2, 89, ED, 87, D3, 8A, C1, 87, F2, 29, C7, 85, C6, E8, 00, 00, 00, 00, 5F, C7, C2, 35, D5, 8E, 2E, 4A, 8A, F0, C7, C2, CA, DF, FD, E8, F7, C2, E5, 47, 97, 1B, 3D, C6, 9A, 72, F4, 85, F3, C6, C1, 85, 8B, CF, 81, F9, 54, 2B, 53, 69, 68, CF, 31, 00, 00, 70, 02, 88, C6, 5E, B9... 
[+]

Entropy:

7.9992 (probably packed)

Code size:

25.5 KB (26,112 bytes)

The file driverassist-setup.exe has been seen being distributed by the following URL.

http://driverslk.safebytes.revenuewire.net/driverassist/.../?o-usb-table-download

Remove driverassist-setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.