» lg netcast 4.0 dmr plus driver.exe
Overview
Analysis
File Details
Downloads (1)

lg netcast 4.0 dmr plus driver.exe

Setup

CLick trust opt

This is the OutBrowse Revenyou installer which bundles offers for additional third party applications that may be unwanted and installed without consent. The application lg netcast 4.0 dmr plus driver.exe by CLick trust opt has been detected as adware by 6 anti-malware scanners. The program is a setup application that uses the OutBrowse Revenyou installer. The setup routine uses the RevenYou.Com Pay Per Install platform (OutBrowse) which bundles additional software offers inclduing toolbars, extensions, PC utilities as well as other PUPs.

File name:

Publisher:

CLick trust opt (signed and verified)

Product:

Setup

Version:

1.9.3.0

MD5:

cb815a1f1a1cd2badb721bbbeb28563e

SHA-1:

5f3b43dd053ec30df3959000cad2a55af887df67

SHA-256:

4beb789870719eba0e7e2ef1544003b35f0a3c49f65ff6365fa55bf2740aa58f

Scanner detections:

6 / 68

Status:

Adware

Explanation:

Bundles additional adware offers during download and installation using the OutBrowse installer.

Description:

This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:

11/27/2024 4:54:06 AM UTC (today)

Scan engine

Detection

Engine version

Avira AntiVirus

PUA/Outbrowse.Gen

7.11.213.102

AVG

Adware AdPlugin.CUA

2014.0.4257

ESET NOD32

Win32/OutBrowse.BU potentially unwanted application

7.0.302.0

Malwarebytes

PUP.Optional.OutBrowse

v2015.03.04.04

McAfee

Adware-OutBrowse.e

5600.6837

Reason Heuristics

PUP.Bundler.Outbrowse

15.3.4.4

File size:

1.1 MB (1,146,648 bytes)

Product version:

1.9.3.0

Setup

Original file name:

Ionic.Zip-2015Mar03-220004-0e0d4c50-e481-4229-9ce7-8d448bb8dc74.exe

File type:

Executable application (Win32 EXE)

Bundler/Installer:

OutBrowse Revenyou

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\lg netcast 4.0 dmr plus driver.exe

Digital Signature

Signed by:

CLick trust opt

Authority:

thawte, Inc.

Valid from:

2/28/2015 5:00:00 PM

Valid to:

1/27/2016 4:59:59 PM

Subject:

CN=CLick trust opt, O=CLick trust opt, L=Dublin, S=Dublin, C=IE

Issuer:

CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:

40DF23B59F49BD8A421754940F049463

File PE Metadata

Compilation timestamp:

3/3/2015 3:00:04 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

24576:LbSaE4mvt/2/tEQaa4ej3ZnSkgOng6qVmZE/rRN2W8qo7ri3:LbSv4mv4//ljok7Xqj+trW

Entry address:

0x75F3E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.5749

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

464 KB (475,136 bytes)

The file lg netcast 4.0 dmr plus driver.exe has been seen being distributed by the following URL.

http://getr.0109tech.info/1425420003/1425420003/.../anEkS2RxbCo8cmRzZGshXmVlZGZhaGI8RWIjSl5zW2FucSotKSgnPWxqK0tpdGwmPG5idV1yIWEwNi0qImJiZ244MiVcZzVjXnMqNSF3aGk4Kg

Remove lg netcast 4.0 dmr plus driver.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.