PrivacyDr2016.exe

Privacy Dr 2016

EuroTrade Ltd

The application PrivacyDr2016.exe by EuroTrade has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It runs as a scheduled task under the Windows Task Scheduler triggered daily at a specified time. This file is typically installed with the program Privacy Dr 2016 by EuroTrade A.L. Ltd.
Publisher:
EuroTrade A.L. Ltd  (signed by EuroTrade Ltd)

Product:
Privacy Dr 2016

Version:
3.1.3.0

MD5:
6c7870cb946ec34bae4dd0b11d185d1c

SHA-1:
d96084809225af449c1b50c0609a33c75896ab13

SHA-256:
0d85f4bf646a1d2d00ccd8177046598e2d1fba9cec98a8b97273661d50971846

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/7/2024 10:47:37 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.EuroTrade.RegClean.Optional.Meta (L)
16.3.17.4

File size:
4.8 MB (5,003,768 bytes)

Product version:
3.1.3.0

Copyright:
Copyright © 2015

Original file name:
PrivacyDr2016.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\privacy dr 2016\privacydr2016.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
11/3/2015 6:00:00 PM

Valid to:
11/3/2020 5:59:59 PM

Subject:
CN=EuroTrade Ltd, O=EuroTrade Ltd, STREET=P.O box 2108, L=Hertzelia, S=non, PostalCode=46120, C=IL

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
53DB4EF1BD09A69A8F5F557766365FE7

File PE Metadata
Compilation timestamp:
3/11/2016 6:49:46 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
49152:iEhrRksLnl3WmDaSzVULXmpyXQfL8+uBWa8D3A5R6:iEhqsLnpWSh5UVXQzbuBl8DER6

Entry address:
0x4ACE9E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.7296

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
4.7 MB (4,894,720 bytes)

Scheduled Task
Task name:
PrivacyDr2016_Popup

Trigger:
Daily (Runs daily at 3:15 PM)

Description:
PrivacyDr2016_Popup


The file PrivacyDr2016.exe has been discovered within the following program.

Privacy Dr 2016  by EuroTrade A.L. Ltd
About 4% of users remove it
 
Powered by Should I Remove It?

Remove PrivacyDr2016.exe - Powered by Reason Core Security