dup.exe

DUP

Taiwan Shui Mu Chih Ching Technology Limited

The application dup.exe by Taiwan Shui Mu Chih Ching Technology Limited has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program WinZipper by Taiwan Shui Mu Chih Ching Technology Limited. which is a potentially unwanted software program.
Publisher:
Taiwan Shui Mu Chih Ching Technology Limited.  (signed by Taiwan Shui Mu Chih Ching Technology Limited)

Product:
DUP

Description:
dupdate

Version:
1.5.29.8409

MD5:
81e7be1d97415d35f859557595f5e2cd

SHA-1:
59ee1dde17d47acdc88e4244ec545f41a3d2c2f9

SHA-256:
5194e602a4137d3c3f08d38e0fa3e0fb808d920a19e97953ca924eda49e0158b

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/26/2024 11:50:42 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Thinknice (M)
16.12.9.1

File size:
230.6 KB (236,176 bytes)

Product version:
1.5.29.8409

Copyright:
Copyright (C) 2012

Original file name:
dup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\winzipper\dup.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
3/13/2013 8:15:13 AM

Valid to:
3/14/2014 8:15:13 AM

Subject:
CN=Taiwan Shui Mu Chih Ching Technology Limited, O=Taiwan Shui Mu Chih Ching Technology Limited, L=新北, S=台湾, C=TW

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121243D90C81CD8FEC70E99813154FB6459

File PE Metadata
Compilation timestamp:
2/26/2014 8:47:54 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

Entry address:
0x1FAB2

Entry point:
E8, BC, 06, 00, 00, E9, 6B, FD, FF, FF, 6A, 10, 68, A8, F4, 42, 00, E8, E8, 03, 00, 00, 33, C0, 89, 45, E0, 89, 45, FC, 89, 45, E4, 8B, 45, E4, 3B, 45, 10, 7D, 13, 8B, 75, 08, 8B, CE, FF, 55, 14, 03, 75, 0C, 89, 75, 08, FF, 45, E4, EB, E5, C7, 45, E0, 01, 00, 00, 00, C7, 45, FC, FE, FF, FF, FF, E8, 08, 00, 00, 00, E8, EF, 03, 00, 00, C2, 14, 00, 83, 7D, E0, 00, 75, 11, FF, 75, 18, FF, 75, E4, FF, 75, 0C, FF, 75, 08, E8, EA, FA, FF, FF, C3, CC, FF, 25, EC, 51, 42, 00, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44...
 
[+]

Code size:
141.5 KB (144,896 bytes)

The file dup.exe has been discovered within the following program.

WinZipper  by Taiwan Shui Mu Chih Ching Technology Limited.
The free and trial versions bundle various potentually unwanted toolbars and web browser extensions including the AVG Toolbar which modifies the browser's search and home page settings..
www.winzipper.com
75% remove it
 
Powered by Should I Remove It?

Remove dup.exe - Powered by Reason Core Security