hulatoo.ffupdate.dll

HulaToo

FFUpdate is the Mozilla Firefox plugin manager for the HulaToo branded Yontoo adware browser platform. The component is designed to install and keep Firefox connected to the adware updater. The module hulatoo.ffupdate.dll by HulaToo has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
HulaToo  (signed and verified)

Version:
1.0.5919.16581

MD5:
7cfa348fa942d4f3d86b886b6cfb121e

SHA-1:
e694ac542f977336e62b52a06d28f58585fe2973

SHA-256:
5093cf34ca0ba36949317e026c41fd9b98e58474daef1a9d47e01fe27d5d0eab

Scanner detections:
1 / 68

Status:
Adware

Explanation:
Part of the Yontoo distributed ad-supported web browser plugin for Firefox.

Analysis date:
11/23/2024 9:39:53 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Yontoo (M)
17.3.12.20

File size:
559.7 KB (573,168 bytes)

Product version:
1.0.5919.16581

Original file name:
2016031617.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\hulatoo\bin\plugins\hulatoo.ffupdate.dll

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
3/16/2015 1:00:00 AM

Valid to:
4/15/2016 1:59:59 AM

Subject:
CN=HulaToo, O=HulaToo, L=Santa Monica, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
085C145DCAAAEB713C3C6B3E2BFDBFE3

File PE Metadata
Compilation timestamp:
3/16/2016 6:12:46 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
11.0

.NET CLR dependent:
Yes

Entry address:
0x8BC82

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
551.5 KB (564,736 bytes)

Remove hulatoo.ffupdate.dll - Powered by Reason Core Security