koala personal search-bho.dll

Skyter Technologies Ltd.

The module koala personal search-bho.dll, “Koala Personal Search BHO” by Skyter Technologies has been detected as adware by 13 anti-malware scanners. This is the Browser Helper Object (BHO) for the Crossrider web browser platform for Internet Explorer. Instead of utilizing a traditional IE Toolbar, it installs a BHO in the browser in order to manage the functionality of the addon.
Publisher:
Koala Personal Search  (signed by Skyter Technologies Ltd.)

Product:
Koala Personal Search

Description:
Koala Personal Search BHO

Version:
1.1.153.42

MD5:
f76e7bccc855813040798a929904a52e

SHA-1:
cd9d38ee1042b8d68d5258d97fa015eb691a3e97

SHA-256:
557eaafa406c9badbb813110a2ca610e0213322c3b1ff8b09fc3e3ceb63c1768

Scanner detections:
13 / 68

Status:
Adware

Explanation:
The software may change the browser's home page and search provider settings as well as display advertisements.

Note:
Crossrider is the owner of a platform that enables the creation of cross-browser extensions by developers but is not the owner of this detected application. The owner/publisher of this file is Skyter Technologies Ltd..

Analysis date:
12/25/2024 1:15:18 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
Adware/CrossRider.A.3159
7.11.162.2

AVG
Generic5
2016.0.2885

Dr.Web
Adware.Toolbar.231
9.0.1.0359

ESET NOD32
Win32/Toolbar.CrossRider
9.9670

F-Prot
W32/A-eb9ef301
v6.4.7.1.166

IKARUS anti.virus
AdWare.Lyckriks
t3scan.1.6.1.0

Malwarebytes
PUP.Optional.KoalaPersonalSearch.A
v2015.12.25.02

NANO AntiVirus
Riskware.Win32.Lyckriks.ctgwey
0.28.0.59048

Panda Antivirus
Generic Malware
15.12.25.02

Reason Heuristics
Adware.Crossrider.SkyterTechnologies (M)
15.12.25.2

Sophos
AppRider
4.98

Vba32 AntiVirus
AdWare.Lyckriks
3.12.26.0

VIPRE Antivirus
Crossrider
28196

File size:
629.4 KB (644,504 bytes)

Product version:
1.1.153.42

Copyright:
Copyright 2011

Original file name:
Koala Personal Search.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\koala personal search\koala personal search-bho.dll

Digital Signature
Authority:
Thawte, Inc.

Valid from:
8/23/2012 3:00:00 AM

Valid to:
8/24/2014 2:59:59 AM

Subject:
CN=Skyter Technologies Ltd., O=Skyter Technologies Ltd., L=Tel Aviv-Jaffa, S=Israel, C=IL

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
436F5CF769692509772EC6E9ED6B3227

File PE Metadata
Compilation timestamp:
12/8/2013 7:50:59 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
12288:0vPLypiaaGpMGWDqXBA0XvSAJgQ0W/L6giTfRxl17WLti1:0vPM+qXBA0XvSAJgy+7TJTF4M1

Entry address:
0x49A1C

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 96, C0, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, 08, 8D, 08, 10, E8, C5, 46, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, 28, EB, 08, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, 38, 57, 07, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4...
 
[+]

Entropy:
6.5186

Developed / compiled with:
Microsoft Visual C++

Code size:
419 KB (429,056 bytes)

Remove koala personal search-bho.dll - Powered by Reason Core Security