installer.exe

Software Updater LLC

This is the Vittalia Filewon Installer which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed with minimal consent. The application installer.exe by Software Updater has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the Vittalia DM installer.
Publisher:
Software Updater LLC  (signed and verified)

MD5:
2d46b8bab9555e337b448d9f1cc18a5a

SHA-1:
e474741af5d73dc32c8061fc20e321d64d6f905c

SHA-256:
b2a2328dfa1fc242b8d18e805ae6bb98ceb15e29574da99338eee1c1c1e3ebd1

Scanner detections:
1 / 68

Status:
Adware

Explanation:
Bundles additional software, mostly toolbars and other potentially unwanted applications using the Vittalia monitization installer.

Description:
This 'download manager' is also considered bundleware, a utility designed to download software (possibly legitimate or opensource) and bundle it with a number of optional offers including ad-supported utilities, toolbars, shopping comparison tools and browser extensions.

Analysis date:
12/26/2024 3:45:10 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Vittalia (M)
17.3.10.22

File size:
3.8 MB (4,001,440 bytes)

File type:
Executable application (Win32 EXE)

Bundler/Installer:
Vittalia DM

Common path:
C:\windows\temp\installer.exe

Digital Signature
Authority:
GoDaddy.com, Inc.

Valid from:
10/8/2013 5:43:01 AM

Valid to:
2/14/2014 11:49:07 AM

Subject:
CN=Software Updater LLC, O=Software Updater LLC, L=Wilmington, S=Delaware, C=US

Issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
4B45A4317FCCA0

File PE Metadata
Compilation timestamp:
10/16/2013 4:22:35 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

Entry address:
0x111B1

Entry point:
E8, 6A, 98, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, 78, 0D, 43, 00, E8, D9, 54, 00, 00, E8, 49, 43, 00, 00, 0F, B7, F0, 6A, 02, E8, FD, 97, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, 35, 77, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8...
 
[+]

Entropy:
6.4373

Code size:
148.5 KB (152,064 bytes)

Remove installer.exe - Powered by Reason Core Security