joshProtocolOutlookAddIn.tools.dll

josh Protocol!

IT Consult

The module joshProtocolOutlookAddIn.tools.dll, “josh Protocol! Outlook Add-in Tools” by IT Consult has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install.
Publisher:
IT Consult  (signed and verified)

Product:
josh Protocol!

Description:
josh Protocol! Outlook Add-in Tools

Version:
4.3.0.0

MD5:
ba912739bd6c86ed8317214466755983

SHA-1:
a73b0b48e7764c4f63c569f2536323b522835d08

SHA-256:
52124fcb6317674830a0a989d35149db5ede0d9b68151bba49b36c0035b5c151

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/23/2024 2:52:49 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Amonetize (M)
16.11.30.17

File size:
58.9 KB (60,304 bytes)

Product version:
4.3.0.0

Copyright:
Copyright © it Consult 2014

Original file name:
joshProtocolOutlookAddIn.tools.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\assembly\dl3\omrnng1z.51b\dtawnlhl.l56\c85d60e1\001fb4b3_8818d101\joshprotocoloutlookaddin.tools.dll

Digital Signature
Signed by:

Authority:
Symantec Corporation

Valid from:
6/11/2015 2:00:00 AM

Valid to:
7/11/2016 1:59:59 AM

Subject:
CN=IT Consult, O=IT Consult, L=Fermignano, S=Pesaro e Urbino, C=IT

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
61F7EF0A7B558B6BEB54449ABFC0146E

File PE Metadata
Compilation timestamp:
11/6/2015 12:45:57 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1536:P5gMuntOb4ZLkT5CfPtng+i30fRF0GOJRkqSHZ:P/untOUZAdCfPtnzFwP3SHZ

Entry address:
0xE56E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
49.5 KB (50,688 bytes)

Remove joshProtocolOutlookAddIn.tools.dll - Powered by Reason Core Security