minilite_v6.6.2.2770.exe

Thinknice Co., Limited

The application minilite_v6.6.2.2770.exe by Thinknice Co., Limited has been detected as adware by 4 anti-malware scanners. This particular feature is designed to hijack the browser in an attempt to prevent other resources from modify the browser's search and home pages. It is also typically executed from the user's temporary directory.
Publisher:
MiniLite  (signed by Thinknice Co., Limited)

Product:
MiniLite

Version:
6.6.2.2770

MD5:
e891d486bc503afab8bc1457a719a171

SHA-1:
a8321f9ca766542db55f3f91d0be9483b00302eb

SHA-256:
e7b58395e7fa72dd246cc129d230759ebc4bfed64f5f59117ea320ff5864a1b3

Scanner detections:
4 / 68

Status:
Adware

Analysis date:
12/25/2024 7:04:35 AM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
W32.HfsAdware
1.3.0.7062

G Data
Win32.Application.SearchProtect.AA@gen
15.8.25

Malwarebytes
PUP.Optional.XTab.A
v2015.08.20.08

Panda Antivirus
Trj/Genetic.gen
15.08.20.08

File size:
822.6 KB (842,368 bytes)

Copyright:
Copyroght (c) 2010-2015 MiniLite System

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\tmp\minilite_v6.6.2.2770.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
8/19/2015 10:42:30 AM

Valid to:
10/21/2015 7:26:52 AM

Subject:
CN="Thinknice Co., Limited", O="Thinknice Co., Limited", L=香港, S=香港, C=HK

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11214C4844480632D72985DD9135BD0E276D

File PE Metadata
Compilation timestamp:
3/22/2010 12:59:20 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:eH92WT8mHzWvghpIHNXYpbWU/MHBpiuGhWeF:ozTWvWpOUblUQuI

Entry address:
0x114A

Entry point:
E9, F1, 55, 00, 00, E9, 0C, 95, 00, 00, E9, 47, B9, 00, 00, E9, 52, 99, 00, 00, E9, AD, 94, 00, 00, E9, C8, A9, 00, 00, E9, 43, 9A, 00, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC...
 
[+]

Packer / compiler:
Xtreme-Protector v1.05

Code size:
62 KB (63,488 bytes)

Remove minilite_v6.6.2.2770.exe - Powered by Reason Core Security