PCSpeedUpMDSetup.exe

PC SpeedUp MD

Vertical PC Solutions, LLC

The application PCSpeedUpMDSetup.exe, “This installer database contains the logic and data required to install PC SpeedUp MD.” by Vertical PC Solutions has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software.
Publisher:
PCSpeedUpMD  (signed by Vertical PC Solutions, LLC)

Product:
PC SpeedUp MD

Description:
This installer database contains the logic and data required to install PC SpeedUp MD.

Version:
2.5.5

MD5:
fba963b5689a6b5831add52b2db3a543

SHA-1:
f5dbfe32696c62e1b4bea3831c30e79da9643de6

SHA-256:
3a88180d2f1611022807fb4c2a356fa24c8ab975fde1c5dc175a0c8e33405250

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/25/2024 1:37:12 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Installer.VerticalPCSolutions.Q
14.12.16.10

File size:
5.7 MB (6,007,472 bytes)

Product version:
2.5.5

Copyright:
Copyright (C) 2014 PCSpeedUpMD

Original file name:
PCSpeedUpMDSetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\pcspeedupmdsetup.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
5/19/2014 5:00:00 PM

Valid to:
5/20/2015 4:59:59 PM

Subject:
CN="Vertical PC Solutions, LLC", O="Vertical PC Solutions, LLC", STREET=1499 W Palmetto Park Rd., STREET=Suite 110, L=Boca Raton, S=Florida, PostalCode=33486, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00FCE8E20936593BA0FECCE89F213382EB

File PE Metadata
Compilation timestamp:
4/28/2014 12:54:30 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
98304:Q2FYOPE4s5ZcY/45PJPTKlT5Wr7ohqh/trn7kIYMEkj4UrIwXn1VAhmZ3wAOThQ5:Q2B2g5PJPyT5Wr7dhVvk5wlVAhOnSKZ

Entry address:
0xC23CA

Entry point:
E8, 31, CC, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 8D, 45, 14, 50, 6A, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, D6, FB, FF, FF, 83, C4, 14, 5D, C3, E8, 26, 0C, 00, 00, 8B, 48, 6C, 3B, 0D, 08, 81, 53, 00, 74, 10, 8B, 0D, 20, 80, 53, 00, 85, 48, 70, 75, 05, E8, 12, 17, 00, 00, A1, 08, 74, 53, 00, C3, CC, CC, CC, CC, CC, CC, CC, CC, 8B, 44, 24, 0C, 53, 85, C0, 74, 52, 8B, 54, 24, 08, 33, DB, 8A, 5C, 24, 0C, F7, C2, 03, 00, 00, 00, 74, 16, 8A, 0A, 83, C2, 01, 32, CB, 74, 72, 83, E8, 01, 74, 32, F7...
 
[+]

Entropy:
7.7494  (probably packed)

Code size:
992.5 KB (1,016,320 bytes)

Remove PCSpeedUpMDSetup.exe - Powered by Reason Core Security