internetenhancer.exe

Internet Enhancer

The application internetenhancer.exe has been detected as a potentially unwanted program by 18 anti-malware scanners.
Product:
Internet Enhancer

Version:
2.24.2.6

MD5:
3ddcd5813810eba811ded9b438e57ad6

SHA-1:
e3837b2698fc9e7b70fa5567d1aa21e17b12d9a7

SHA-256:
62020fc8f0a08995356cfeb4a188d27186015a4362cbad4e4c4a3c07499b69df

Scanner detections:
18 / 68

Status:
Potentially unwanted

Analysis date:
11/5/2024 9:59:44 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Adware.Kazy.486405
693

Agnitum Outpost
Riskware.Agent
7.1.1

Avira AntiVirus
Adware/Wajam.77824.2
7.11.214.168

avast!
Win32:Adware-gen [Adw]
2014.9-150313

Baidu Antivirus
PUA.MSIL.Wajam
4.0.3.15313

Bitdefender
Gen:Variant.Adware.Kazy.486405
1.0.20.360

Emsisoft Anti-Malware
Gen:Variant.Adware.Kazy.486405
8.15.03.13.02

ESET NOD32
MSIL/Wajam.B potentially unwanted (variant)
9.11285

F-Secure
Gen:Variant.Adware.Kazy
11.2015-13-03_6

G Data
Gen:Variant.Adware.Kazy.486405
15.3.25

K7 AntiVirus
Trojan
13.200.15187

Malwarebytes
PUP.Optional.Wajam.A
v2015.03.13.02

McAfee
Artemis!3DDCD5813810
5600.6827

MicroWorld eScan
Gen:Variant.Adware.Kazy.486405
16.0.0.216

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1015

Trend Micro House Call
TROJ_GEN.R08NC0OBG15
7.2.72

Trend Micro
TROJ_GEN.R08NC0OBG15
10.465.13

VIPRE Antivirus
Trojan.Win32.Generic
38218

File size:
76 KB (77,824 bytes)

Product version:
2.24.2.6

Copyright:
Copyright © 2014

Original file name:
WajamInternetEnhancer.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\wnenhance\wnenhance internet enhancer\internetenhancer.exe

File PE Metadata
Compilation timestamp:
2/3/2015 2:05:06 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1536:phLshisbzbBCyv5dRm1DRL7b4LItIPy4AypKOYEEtXfQAvav8ofSsWW:HLs2Mz1KqOXf6P6st

Entry address:
0x144FE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.8150

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
73.5 KB (75,264 bytes)

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP SSL):
Connects to a104-75-100-21.deploy.static.akamaitechnologies.com  (104.75.100.21:443)

TCP (HTTP):
Connects to static.35.38.201.138.clients.your-server.de  (138.201.38.35:80)

TCP (HTTP):
Connects to vip0x054.map2.ssl.hwcdn.net  (209.197.3.84:80)

TCP (HTTP):
Connects to https-178-79-227-86.vie.llnw.net  (178.79.227.86:80)

TCP (HTTP):
Connects to ec2-54-225-218-28.compute-1.amazonaws.com  (54.225.218.28:80)

TCP (HTTP):
Connects to a95-101-142-114.deploy.akamaitechnologies.com  (95.101.142.114:80)

TCP (HTTP):
Connects to ec2-52-51-138-141.eu-west-1.compute.amazonaws.com  (52.51.138.141:80)

TCP (HTTP):
Connects to ec2-23-21-242-90.compute-1.amazonaws.com  (23.21.242.90:80)

TCP (HTTP):
Connects to hwcdn.net  (69.16.175.10:80)

TCP (HTTP):
Connects to ec2-54-72-9-51.eu-west-1.compute.amazonaws.com  (54.72.9.51:80)

TCP (HTTP):
Connects to ec2-54-174-209-247.compute-1.amazonaws.com  (54.174.209.247:80)

TCP (HTTP):

TCP (HTTP):
Connects to ec2-52-48-202-137.eu-west-1.compute.amazonaws.com  (52.48.202.137:80)

TCP (HTTP SSL):
Connects to ec2-52-3-176-101.compute-1.amazonaws.com  (52.3.176.101:443)

TCP (HTTP):

TCP (HTTP):
Connects to ec2-107-23-224-186.compute-1.amazonaws.com  (107.23.224.186:80)

TCP (HTTP):
Connects to a95-101-142-106.deploy.akamaitechnologies.com  (95.101.142.106:80)

TCP (HTTP):
Connects to static.81.144.243.136.clients.your-server.de  (136.243.144.81:80)

TCP (HTTP SSL):
Connects to sin04s05-in-f174.1e100.net  (216.58.196.174:443)

TCP (HTTP SSL):
Connects to sin04s05-in-f162.1e100.net  (216.58.196.162:443)

Remove internetenhancer.exe - Powered by Reason Core Security