home

mySupermarket Companion.dll

mySupermarket Companion

MYSUPERMARKET LIMITED

This web browser extension uses the Crossrider toolbar creation and distribution platform. The module mySupermarket Companion.dll, “mySupermarket Companion BHO” by MYSUPERMARKET LIMITED has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘CrossriderApp0013738’. The library is built using the Crossrider cross-browser extension platform. While the file utilizes the Crossrider framework and delivery services, it is not owned by Crossrider.
Publisher:
mySupermarket Ltd  (signed by MYSUPERMARKET LIMITED)

Product:
mySupermarket Companion

Description:
mySupermarket Companion BHO

Version:
1.1.151.76

MD5:
4e5b6fd2f6378fcb1d0e5c30b4e1de3a

SHA-1:
2619e99a49cad288594b2e817be21fa9ff142f8e

SHA-256:
c7af655df810d1edec65eb4dc3b477db27cc5f7bff3d2a4640efceba3693a1f1

Scanner detections:
1 / 68

Status:
Potentially unwanted

Explanation:
The software may change the browser's home page and search provider settings as well as display advertisements.

Analysis date:
11/15/2024 5:10:37 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Crossrider (M)
16.8.31.3

File size:
603.4 KB (617,832 bytes)

Product version:
1.1.151.76

Copyright:
Copyright 2011

Original file name:
mySupermarket Companion.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\mysupermarket companion\mysupermarket companion.dll

Digital Signature
Signed by:
MYSUPERMARKET LIMITED

Authority:
GoDaddy.com, Inc.

Valid from:
9/24/2012 3:35:06 PM

Valid to:
9/24/2013 3:35:06 PM

Subject:
CN=MYSUPERMARKET LIMITED, OU=R&D, O=MYSUPERMARKET LIMITED, L=Manchester, S=Manchester, C=GB

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
2B03360E584881

File PE Metadata
Compilation timestamp:
11/12/2012 1:12:12 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:8UIXJ8ND/bhpduBwiOOpQAFWrsZhwYOF4rTbT5GnykDmpN+pP3:DBD/bhpduBrOOpgrKwjyrT35Qyk6N+p/

Entry address:
0x3B7DE

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 96, 9A, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 8B, 45, 08, 85, C0, 74, 12, 83, E8, 08, 81, 38, DD, DD, 00, 00, 75, 07, 50, E8, 55, C2, FF, FF, 59, 5D, C3, 8B, FF, 55, 8B, EC, 83, EC, 10, A1, E0, 7D, 08, 10, 33, C5, 89, 45, FC, 8B, 55, 18, 53, 33, DB, 56, 57, 3B, D3, 7E, 1F, 8B, 45, 14, 8B, CA, 49, 38, 18, 74, 08, 40, 3B, CB, 75, F6, 83, C9, FF, 8B, C2, 2B, C1, 48, 3B, C2, 7D, 01, 40, 89, 45, 18...
 
[+]

Entropy:
6.6022

Code size:
421 KB (431,104 bytes)

Internet Explorer BHO
Display name:
CrossriderApp0013738

CLSID:
{11111111-1111-1111-1111-110111371138}

CLSID name:
mySupermarket Companion


Remove mySupermarket Companion.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.