jetboost-setup.exe

JetBoost

BlueSprig, Inc.

The application jetboost-setup.exe, “JetBoost Setup ” by BlueSprig has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup and installation application and has been known to bundle potentially unwanted software. This file is typically installed with the program Toolwiz BSafe by ToolWiz. It is also typically executed from an Internet Explorer cache folder. The file has been seen being downloaded from downloader.disk.yandex.com and multiple other hosts.
Publisher:
BlueSprig   (signed by BlueSprig, Inc.)

Product:
JetBoost

Description:
JetBoost Setup

Version:
2.0.0

MD5:
02ad1908522322aa539f15b730b43486

SHA-1:
32fb5bb4aced8aa31e772ab74e45ebecd6c1c0fc

SHA-256:
3c0223046521fca8c37a6816af5b4b3cae3eaae8600a2e7f131b20f85e507c4b

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/23/2024 6:06:48 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Installer.BlueSprig
15.4.2.1

File size:
3.3 MB (3,511,744 bytes)

Product version:
2.0.0

Copyright:
Copyright© 2011-2012

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\jetboost-setup.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
11/3/2011 1:00:00 AM

Valid to:
11/3/2013 12:59:59 AM

Subject:
CN="BlueSprig, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="BlueSprig, Inc.", L=San Fransisco, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
589D023EC02E552CDAA00B1FA0FDCA85

File PE Metadata
Compilation timestamp:
10/9/2012 9:48:22 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:eQlA0Ge84QkXoqcv2pDROSAZS/ckieYR8S/o:esD8HkXWvkDRBAcViJtQ

Entry address:
0xF3BC

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 64, ED, 40, 00, E8, E8, 71, FF, FF, 33, C0, 55, 68, 89, FA, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 45, FA, 40, 00, 64, FF, 32, 64, 89, 22, A1, 48, 3B, 41, 00, E8, BE, F7, FF, FF, E8, 65, F3, FF, FF, 8D, 55, EC, 33, C0, E8, F7, C3, FF, FF, 8B, 55, EC, B8, 4C, 66, 41, 00, E8, 6A, 58, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, 4C, 66, 41, 00, B2, 01...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
59 KB (60,416 bytes)

The file jetboost-setup.exe has been discovered within the following program.

Toolwiz BSafe  by ToolWiz
www.Toolwiz.com
About 9% of users remove it
 
Powered by Should I Remove It?

The file jetboost-setup.exe has been seen being distributed by the following 50 URLs.

https://downloader.disk.yandex.com/disk/f0dc27b0adc604bbc6385613766aaa6d5005f0929edcb65aa50fc0b3a0d5404f/586685ba/G2OwJ2h4UmFKaaLBFF1MeD1L8j1odEtjmTBtZBN3vjkFqGxwRhYuuOGjyaHOdVCoHN_-lZlgaD1Q4bhNJvgqjg==?uid=0&filename=jetboost-setup.exe&disposition=attachment&hash=j0SjxrsW3vPO7SAHFLY/.../x-msdownload&fsize=3511744&hid=19d94b56b49aa6d17976d84fbc952b15&media_type=executable&tknv=v2

http://filehippo.com/download/file/.../

https://mega.nz/persistent/.../pl91FToQ

http://jetboost.soft32.com/get/file/id/.../?no_download_manager=true

https://downloader.disk.yandex.ru/disk/4f9146c93a44ee26ec28385222685116fbd22cc0bf8eafefe168c394b8d01a2d/585049f9/G2OwJ2h4UmFKaaLBFF1MeD1L8j1odEtjmTBtZBN3vjkFqGxwRhYuuOGjyaHOdVCoHN_-lZlgaD1Q4bhNJvgqjg==?uid=0&filename=jetboost-setup.exe&disposition=attachment&hash=j0SjxrsW3vPO7SAHFLY/.../x-msdownload&fsize=3511744&hid=19d94b56b49aa6d17976d84fbc952b15&media_type=executable&tknv=v2

http://download1633.mediafire.com/b22bhv238ong/.../JetBoost.exe

http://files2.majorgeeks.com/99f59c0842e83c808dd1813b48a37c6a/.../jetboost-setup.exe

http://files1.majorgeeks.com/b06cbb874ce37177f6dcdf690b5ac490/.../jetboost-setup.exe

http://www.majorgeeks.com/index.php?ct=files&action=download&PHPSESSID=4t4eu8tfr7461c19k4ba0irf22

https://downloader.disk.yandex.ua/disk/82e8c218f8f6da56eafffb7e039dd6310135681af7335cc5f8c11b2105aafc88/5852f4c2/G2OwJ2h4UmFKaaLBFF1MeD1L8j1odEtjmTBtZBN3vjkFqGxwRhYuuOGjyaHOdVCoHN_-lZlgaD1Q4bhNJvgqjg==?uid=0&filename=jetboost-setup.exe&disposition=attachment&hash=j0SjxrsW3vPO7SAHFLY/.../x-msdownload&fsize=3511744&hid=19d94b56b49aa6d17976d84fbc952b15&media_type=executable&tknv=v2

https://downloader.disk.yandex.ru/disk/96e7c56adf98e2c2b93be571f5619c04f7a24d1fbefe8f8588c1b0040286ec0f/5865b124/G2OwJ2h4UmFKaaLBFF1MeD1L8j1odEtjmTBtZBN3vjkFqGxwRhYuuOGjyaHOdVCoHN_-lZlgaD1Q4bhNJvgqjg==?uid=0&filename=jetboost-setup.exe&disposition=attachment&hash=j0SjxrsW3vPO7SAHFLY/.../x-msdownload&fsize=3511744&hid=19d94b56b49aa6d17976d84fbc952b15&media_type=executable&tknv=v2

https://downloader.disk.yandex.com/disk/894fc41c4d349ae474380b5693d6088ce802e67a0d7c94b3c146e4c54eef58cb/5862ed87/G2OwJ2h4UmFKaaLBFF1MeD1L8j1odEtjmTBtZBN3vjkFqGxwRhYuuOGjyaHOdVCoHN_-lZlgaD1Q4bhNJvgqjg==?uid=0&filename=jetboost-setup.exe&disposition=attachment&hash=j0SjxrsW3vPO7SAHFLY/.../x-msdownload&fsize=3511744&hid=19d94b56b49aa6d17976d84fbc952b15&media_type=executable&tknv=v2

https://downloader.disk.yandex.ru/disk/9769bf43ac3664080ad5608726350a5b76d36949276952019f843a1ec541513b/5852df97/G2OwJ2h4UmFKaaLBFF1MeD1L8j1odEtjmTBtZBN3vjkFqGxwRhYuuOGjyaHOdVCoHN_-lZlgaD1Q4bhNJvgqjg==?uid=0&filename=jetboost-setup.exe&disposition=attachment&hash=j0SjxrsW3vPO7SAHFLY/.../x-msdownload&fsize=3511744&hid=19d94b56b49aa6d17976d84fbc952b15&media_type=executable&tknv=v2

https://jetboost.softonic.com/.../trmsvRChbxdrflJq3ZIylWtAJKug4ApNfQLscYPFtCg 8 01mUIxRaDavqmSwSp0IIZAHBgl1utnJL57 jN2oVP5KaqFXr WNIOPFTQpT3xxiwuDLHzu0cOv0jtvjIEHJ4bX4IYMkswtCVn8FrZ5MI8=

https://mega.nz/temporary/.../iNo2DQbQ

http://download.softpedia.com/dl/720c288b2a8f371c478e46f141b79afa/580f5efe/100200722/software/.../jetboost-setup.exe

https://d1ob5g40gc5b6g.cloudfront.net/40/397862/.../jetboostsetup.exe

http://files1.majorgeeks.com/6aa020e879ccd33affde6c1b1af4bb2f/.../jetboost-setup.exe

http://www.majorgeeks.com/index.php?ct=files&action=download&PHPSESSID=v0p26de4s22778kgjf7gt90703

http://www.majorgeeks.com/index.php?ct=files&action=download&PHPSESSID=8tpbld2rmk6rac5rakhk5m3pa6

http://hu.softoware.net/get-jetboost.html?ir=1

http://www.majorgeeks.com/index.php?ct=files&action=download&PHPSESSID=l4m060k75dv9noibn6gc7v1s45

http://www.majorgeeks.com/index.php?ct=files&action=download&PHPSESSID=79vglri3v3d89qrs1gpsr47vb5

http://www.softportal.com/getsoft-23931-jetboost-1.html

https://mega.nz/persistent/.../iNo2DQbQ

https://mega.nz/temporary/.../pl91FToQ

http://files2.majorgeeks.com/2cf203516f33059cf320d8b7ec385328/.../jetboost-setup.exe

Latest 30 of 94 download URLs

Remove jetboost-setup.exe - Powered by Reason Core Security