non confirmé 268630.crdownload

Ultra Setup Manager

QUALITY SCORE SL

The file non confirmé 268630.crdownload by QUALITY SCORE SL has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The file has been seen being downloaded from repo2develop.com.
Publisher:
MS  (signed by QUALITY SCORE SL)

Product:
Ultra Setup Manager

Version:
1.0.4.33

MD5:
6618ff38c1a3e0bdcb19bc2e3b3886e9

SHA-1:
7d15c6f2b27200b1d07037f56f05c426aac42814

SHA-256:
2c4807c1ac8ad6fe6a7a5b9ffc786cc203ee9c89f153451ad0f09453f2475ac1

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
12/25/2024 1:19:22 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.QUALITYSCORE.Installer (M)
16.3.5.15

File size:
30.1 KB (30,776 bytes)

Product version:
1.0.4.33

Copyright:
Copyright © 2015

Trademarks:
MS

Original file name:
iEx.exe

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\non confirmé 268630.crdownload

Digital Signature
Authority:
COMODO CA Limited

Valid from:
1/20/2015 1:00:00 AM

Valid to:
1/21/2016 12:59:59 AM

Subject:
CN=QUALITY SCORE SL, O=QUALITY SCORE SL, STREET=CALLE SERRANO 213, L=MADRID, S=MADRID, PostalCode=28016, C=ES

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00AFDAFBF8A640E5E34B76A9CAFF494517

File PE Metadata
Compilation timestamp:
8/31/2015 4:21:14 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
384:r56T0oY9ul+psa0EhM9MVzQbfRnriKc0yU:IT0HYopse3VzQFriKryU

Entry address:
0x2EEE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
4 KB (4,096 bytes)

The file non confirmé 268630.crdownload has been seen being distributed by the following URL.

Remove non confirmé 268630.crdownload - Powered by Reason Core Security