mysearchdial.exe

MySearchDial

MDS

The application mysearchdial.exe, “Setup ” by MDS has been detected as adware by 2 anti-malware scanners. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. The setup program uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions. It is also typically executed from the user's temporary directory.
Publisher:
Setup ©   (signed by MDS)

Product:
MySearchDial

Description:
Setup

Version:
2.17.0.1

MD5:
db6c32902ee88e430f8c57441497893a

SHA-1:
d4c65248fd7df2b32b26d720408c97daffbdf584

SHA-256:
573d67c6496fc5f1360482c57b64c2847ef1ab0d41dde940e56d565fdc3dee92

Scanner detections:
2 / 68

Status:
Adware

Explanation:
Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Analysis date:
12/24/2024 4:39:24 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Installer.MDS
15.5.30.8

Vba32 AntiVirus
3.12.24.3

File size:
1.9 MB (2,019,600 bytes)

Product version:
2.17.0.1

Original file name:
MySearchDial_2.17.0.1.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\11274530_stp\mysearchdial.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
2/3/2014 1:00:00 AM

Valid to:
2/4/2015 12:59:59 AM

Subject:
CN=MDS, O=MDS, STREET=28 Lilinblum St., L=Tel-Aviv, S=Israel, PostalCode=6513307, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00B95CED86999C43270B036A9868F2DF3E

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:v8zi4XUv+kTOnFGb/VNuvyYW0WdSm9eZCBcbW3w2o:v8z5Uv+TGxNhdSueQcbW33o

Entry address:
0x79684

Entry point:
55, 8B, EC, 83, C4, F0, B8, C4, 93, 47, 00, E8, 84, E1, F8, FF, 33, C0, E8, FD, EE, FF, FF, E8, 6C, B8, F8, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
482 KB (493,568 bytes)

Remove mysearchdial.exe - Powered by Reason Core Security