ibdp.exe

Driver Performer

Zugo Ltd

The application ibdp.exe by Zugo has been detected as adware by 8 anti-malware scanners. The file has been seen being downloaded from www.bit89.com.
Publisher:
Zugo Ltd  (signed and verified)

Product:
Driver Performer

Version:
1.0

MD5:
fa5a9e9af5f677b0fd675442439fa1e4

SHA-1:
307f7295cf31f16fb594e568fd0f4c549148b0d3

SHA-256:
5ee2d95df0065ad38616b5462a9cb03b0da1a8cbfaef7a50d529df898895ad90

Scanner detections:
8 / 68

Status:
Adware

Analysis date:
12/30/2024 10:07:36 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
W32.Clod053.Trojan
1.3.0.4613

Boost by Reason
Trojan.Adw.Zugo.E
2013.7.25.0

Dr.Web
Adware.Searcher.755
9.0.1.0206

ESET NOD32
Win32/Toolbar.Zugo
7.9190

Fortinet FortiGate
Riskware/Zugo
7/25/2013

Malwarebytes
PUP.Zugo
v2013.07.25.12

Reason Heuristics
PUP.Zugo.E
14.8.7.17

Trend Micro House Call
TROJ_GEN.RCBH2B7
7.2.206

File size:
610.7 KB (625,376 bytes)

Product version:
1.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\ibdp.exe

Digital Signature
Signed by:

Authority:
The USERTRUST Network

Valid from:
1/27/2011 4:00:00 PM

Valid to:
1/27/2013 3:59:59 PM

Subject:
CN=Zugo Ltd, O=Zugo Ltd, STREET=PO Box 36, STREET=1st Floor, STREET=37 Broad St., L=St Helier, S=Jersey, PostalCode=JE4 9NU, C=JE

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
46241CDE5C7B500B51C5F1328228F2A9

File PE Metadata
Compilation timestamp:
12/5/2009 2:50:46 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x323C

Code size:
23 KB (23,552 bytes)

The file ibdp.exe has been seen being distributed by the following URL.

Remove ibdp.exe - Powered by Reason Core Security