PCTopPrivacySetup.exe

PC Top Privacy

Sensei Ventures Inc

The application PCTopPrivacySetup.exe, “This installer database contains the logic and data required to install PC Top Privacy.” by Sensei Ventures Inc has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. The file has been seen being downloaded from toolkit.shieldapps.info.
Publisher:
Sensei Ventures Inc.  (signed by Sensei Ventures Inc)

Product:
PC Top Privacy

Description:
This installer database contains the logic and data required to install PC Top Privacy.

Version:
2.4.7

MD5:
a5d897e609106a5edbb9e90261fbc0de

SHA-1:
7eee7fe2f0a09c9d93d0f891b4886cfd9ba3118a

SHA-256:
559c42db186fa9f4330fd7c931a64ee84c85b1d5b53f5edd190166725e9c8817

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/25/2024 11:28:46 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Sensei.RegClean.Optional.Installer.Meta (L)
15.8.26.16

File size:
4 MB (4,244,712 bytes)

Product version:
2.4.7

Copyright:
Copyright (C) 2015 Sensei Ventures Inc.

Original file name:
PCTopPrivacySetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\pctopprivacysetup.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
2/10/2014 7:00:00 PM

Valid to:
2/11/2016 6:59:59 PM

Subject:
CN=Sensei Ventures Inc, O=Sensei Ventures Inc, STREET=9550 S Eastern Ave, STREET=Suite 253, L=Las Vegas, S=NV, PostalCode=89123, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
2D04C632520848E228BD09B369D9DF38

File PE Metadata
Compilation timestamp:
10/7/2014 11:05:58 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
98304:7G7cl1155MF19+w5jI29sFd3j3dqnUbCCGynOGhKl:euQ55LsXDdWGTn1Kl

Entry address:
0xC87EC

Entry point:
E8, 4A, CC, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 51, 53, 56, 8B, F0, 33, DB, 3B, F3, 75, 1E, E8, 5D, 4D, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, C5, D5, FF, FF, 83, C4, 14, 8B, C6, E9, C2, 00, 00, 00, 57, 39, 5D, 0C, 77, 1E, E8, 39, 4D, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, A1, D5, FF, FF, 83, C4, 14, 8B, C6, E9, 9D, 00, 00, 00, 33, C0, 39, 5D, 14, 66, 89, 06, 0F, 95, C0, 40, 39, 45, 0C, 77, 09, E8, 0A, 4D, 00, 00, 6A, 22, EB, CF, 8B, 45, 10, 83, C0, FE, 83, F8, 22, 77...
 
[+]

Entropy:
7.5995

Code size:
1021.5 KB (1,046,016 bytes)

The file PCTopPrivacySetup.exe has been seen being distributed by the following URL.

Remove PCTopPrivacySetup.exe - Powered by Reason Core Security