home

MegaBrowse.IEUpdate.dll

Megabrowse

This is the Internet Explorer add-on for the Yontoo Megabrowse branded web browser plugin (injects banner, text-link and popup ads). The component is responisble for registering the Browser Helper Object into IE and keeping it registered. The module MegaBrowse.IEUpdate.dll by Megabrowse has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Megabrowse  (signed and verified)

Version:
1.0.5409.17523

MD5:
3e07d7e64e8435bf85f410ffd64542b1

SHA-1:
99d4ca4cd7d74191c16aed3d7cc2059bce30b54f

SHA-256:
f29b820818eb2d65fc989d84590aba5ad661c3956167ba67fe709b8c8e968c3c

Scanner detections:
1 / 68

Status:
Adware

Explanation:
Part of the Yontoo distributed ad-supported web browser add-on for Internet Explorer.

Analysis date:
11/23/2024 6:37:44 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Yontoo (M)
17.3.5.7

File size:
654.9 KB (670,632 bytes)

Product version:
1.0.5409.17523

Original file name:
MegaBrowse.IEUpdate.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\Program Files\mega browse\bin\plugins\megabrowse.ieupdate.dll

Digital Signature
Signed by:
Megabrowse

Authority:
COMODO CA Limited

Valid from:
5/6/2014 9:00:00 PM

Valid to:
5/7/2015 8:59:59 PM

Subject:
CN=Megabrowse, O=Megabrowse, STREET=10620 Treena Street Suite 230, L=San Diego, S=Ca, PostalCode=92131, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
0CD194221ED016F035BD7BACA4027DC3

File PE Metadata
Compilation timestamp:
10/23/2014 3:44:09 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

.NET CLR dependent:
Yes

Entry address:
0xA397A

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 6F, 00, 00, 00, BC, 39, 0A, 00, BC, 1B, 0A, 00, 52, 53, 44, 53, 9E, 76, B8, B5, 30, 05, 11, 46, 83, 8E, 06, 82, 88, E1, 1B, 22, 01, 00, 00, 00, 44, 3A, 5C, 55, 74, 69, 6C, 69, 74, 69, 65, 73, 5C, 6F, 35, 35, 71, 7A, 67, 74, 77, 2E, 31, 6D, 65, 5C, 44, 65, 73, 6B, 74, 6F, 70, 5C, 44, 65, 73, 6B...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
647 KB (662,528 bytes)

Remove MegaBrowse.IEUpdate.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.