igbpcefwr.exe

Instalação do Módulo Adicional de Segurança CAIXA

Caixa Economica Federal

The application igbpcefwr.exe by Caixa Economica Federal has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions.
Publisher:
CAIXA  (signed by Caixa Economica Federal)

Product:
Instalação do Módulo Adicional de Segurança CAIXA

Version:
1,5,1,1

MD5:
8e77cecc0fc44f0719b4ae5e409a693f

SHA-1:
02c3a4b9d95b38c628601e99aa952a364c669ad3

SHA-256:
7bee88bc13d3a9f718119f0da37980c12c0a4571e351decd15ba180d99fc2ceb

Scanner detections:
1 / 68

Status:
Potentially unwanted

Explanation:
Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Analysis date:
11/24/2024 4:35:16 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.InstallCore (L)
17.3.11.15

File size:
2.5 MB (2,665,128 bytes)

Product version:
1,5,1,1

Copyright:
Copyright © 2015, CAIXA

Original file name:
GBPCEF

File type:
Executable application (Win32 EXE)

Language:
Português

Common path:
C:\users\{user}\downloads\igbpcefwr.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
7/9/2015 4:53:53 PM

Valid to:
7/9/2018 4:53:53 PM

Subject:
E=grist@caixa.gov.br, CN=Caixa Economica Federal, O=Caixa Economica Federal, L=Brasilia, S=Distrito Federal, C=BR

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121D0E6A0DE2EA4B9AF64B9F1517CB0695C

File PE Metadata
Compilation timestamp:
8/7/2015 6:58:49 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x12D102

Entry point:
E8, 86, EB, 00, 00, E9, 78, FE, FF, FF, CC, CC, CC, CC, 83, 3D, B4, 9F, 5C, 00, 00, 0F, 84, B6, EE, 00, 00, 83, EC, 08, 0F, AE, 5C, 24, 04, 8B, 44, 24, 04, 25, 80, 1F, 00, 00, 3D, 80, 1F, 00, 00, 75, 0F, D9, 3C, 24, 66, 8B, 04, 24, 66, 83, E0, 7F, 66, 83, F8, 7F, 8D, 64, 24, 08, 0F, 85, 85, EE, 00, 00, EB, 00, F3, 0F, 7E, 44, 24, 04, 66, 0F, 28, 15, 90, 6D, 58, 00, 66, 0F, 28, C8, 66, 0F, 28, F8, 66, 0F, 73, D0, 34, 66, 0F, 7E, C0, 66, 0F, 54, 05, C0, 6D, 58, 00, 66, 0F, FA, D0, 66, 0F, D3, CA, A9, 00, 08...
 
[+]

Code size:
1.4 MB (1,491,968 bytes)

Remove igbpcefwr.exe - Powered by Reason Core Security