» PCTopPrivacySetup.exe
Overview
Analysis
File Details
Downloads (1)

PCTopPrivacySetup.exe

PC Top Privacy

Sensei Ventures Inc

The application PCTopPrivacySetup.exe, “This installer database contains the logic and data required to install PC Top Privacy.” by Sensei Ventures Inc has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. The file has been seen being downloaded from www.pctopprivacy.com.

File name:

Publisher:

Sensei Ventures Inc. (signed by Sensei Ventures Inc)

Product:

PC Top Privacy

Description:

This installer database contains the logic and data required to install PC Top Privacy.

Version:

2.6.7

MD5:

55135af18191b7b09ef97ced39d6aeb9

SHA-1:

e63893cd01be9caacc5540f75566928309aec798

SHA-256:

cdf9fda218ed726009200c7b6ec1294e07053f71b8fb904422bcb713220f870d

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

11/25/2024 6:19:23 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Sensei.RegClean.Optional.Installer.Meta (L)

15.8.26.16

File size:

4.3 MB (4,545,056 bytes)

Product version:

2.6.7

Original file name:

PCTopPrivacySetup.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\pctopprivacysetup.exe

Digital Signature

Signed by:

Sensei Ventures Inc

Authority:

COMODO CA Limited

Valid from:

2/10/2014 7:00:00 PM

Valid to:

2/11/2016 6:59:59 PM

Subject:

CN=Sensei Ventures Inc, O=Sensei Ventures Inc, STREET=9550 S Eastern Ave, STREET=Suite 253, L=Las Vegas, S=NV, PostalCode=89123, C=US

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

2D04C632520848E228BD09B369D9DF38

File PE Metadata

Compilation timestamp:

10/7/2014 11:05:58 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

98304:vG7cl1155MF19n85UJbX3l0X7k4Qa48kS0pfuf1mXs:quQw54nl0Ga4VpfMmXs

Entry address:

0xC87EC

Entry point:

E8, 4A, CC, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 51, 53, 56, 8B, F0, 33, DB, 3B, F3, 75, 1E, E8, 5D, 4D, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, C5, D5, FF, FF, 83, C4, 14, 8B, C6, E9, C2, 00, 00, 00, 57, 39, 5D, 0C, 77, 1E, E8, 39, 4D, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, A1, D5, FF, FF, 83, C4, 14, 8B, C6, E9, 9D, 00, 00, 00, 33, C0, 39, 5D, 14, 66, 89, 06, 0F, 95, C0, 40, 39, 45, 0C, 77, 09, E8, 0A, 4D, 00, 00, 6A, 22, EB, CF, 8B, 45, 10, 83, C0, FE, 83, F8, 22, 77... 
[+]

Entropy:

7.6380

Code size:

1021.5 KB (1,046,016 bytes)

The file PCTopPrivacySetup.exe has been seen being distributed by the following URL.

http://www.pctopprivacy.com/pctopprivacysetup.exe

Remove PCTopPrivacySetup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.