enterdigital.dll

EnterDigital

Part of the Yontoo adware component, a web browser plugin that injects unwanted ads in the browser. The module enterdigital.dll by EnterDigital has been detected as adware by 9 anti-malware scanners. This file is typically installed with the program EnterDigital by Yontoo Technology, Inc. which is a potentially unwanted software program. It will plug into the web browser and display context-based advertisements by overwriting existing ads or by inserting new ones on various web pages. It is also typically executed from an Internet Explorer cache folder. The file has been seen being downloaded from install-cdn.enterdigital.info.
Publisher:
EnterDigital  (signed and verified)

Product:
EnterDigital

Version:
1.0.0.3

MD5:
efc476a42f27240bcf49d823dc154e19

SHA-1:
bc79006f5bb85a4ac6b1cc88fc6bbe03a8176ea1

SHA-256:
65668a886ca4faaaceff5a1627fcd29031f4c72328a3744aa70c66a832d4f2d5

Scanner detections:
9 / 68

Status:
Adware

Explanation:
Injects advertising in the web browser in various formats.

Analysis date:
12/26/2024 5:52:34 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
ADWARE/BrowseFox.Gen2
7.11.183.24

AVG
BrowseFox.F
2015.0.3300

Baidu Antivirus
Adware.Win32.BrowseFox
4.0.3.14114

Comodo Security
Application.Win32.BrowseFox.JM
19994

Dr.Web
Trojan.BPlug.167
9.0.1.0308

ESET NOD32
Win32/BrowseFox (variant)
8.10670

Malwarebytes
PUP.Optional.EnterDigital.A
v2014.11.04.03

NANO AntiVirus
Trojan.Win32.BPlug.dfohwl
0.28.6.62995

Reason Heuristics
PUP.EnterDigital.M
14.11.4.15

File size:
244.7 KB (250,608 bytes)

Product version:
1.0.0.3

Copyright:
(c) EnterDigital. All rights reserved.

Original file name:
EnterDigitalIEClient.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\enterdigital.dll

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
9/1/2014 8:00:00 PM

Valid to:
9/2/2015 7:59:59 PM

Subject:
CN=EnterDigital, O=EnterDigital, L=San Diego, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1E3B5C4453E4282F35D4B16FE677D245

File PE Metadata
Compilation timestamp:
11/4/2014 10:50:09 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
3072:gT6o6aQ2Mm83Z2qJC0SzN+3aI4id15+s+xIaIGQNRlLm:gKaQ2MR3BCRkwxIJblLm

Entry address:
0x12854

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 41, 8D, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, 90, 30, 03, 10, E8, BD, 01, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, 44, 78, 03, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, 1C, A5, 02, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4...
 
[+]

Entropy:
6.3536

Developed / compiled with:
Microsoft Visual C++

Code size:
159 KB (162,816 bytes)

The file enterdigital.dll has been discovered within the following programs.

EnterDigital  by Yontoo Technology, Inc.
Publisher's description - “The Software provides a suite of web browsing features that customize and enhance your interaction with various websites by rendering graphics, text, or other functional or interactive content in your browsers.”
enterdigital.info/support
84% remove it
 
Powered by Should I Remove It?

The file enterdigital.dll has been seen being distributed by the following URL.

Remove enterdigital.dll - Powered by Reason Core Security