Qt5WebKitWidgets.dll

Qt5

SIEN Internet Products Ltd

This is the SIEN AppScion Installer which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed with minimal consent. Qt5WebKitWidgets.dll is part of the Qt framework, a cross-platform application and UI framework for C++ and is recompiled by SIEN Internet Products Ltd. The module Qt5WebKitWidgets.dll, “C++ application development framework.” by SIEN Internet Products has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the SIEN SuperInstall installer. Although a detection has been made for this resource, it is generally a commonly distributed 3rd-party library and is typically safe by itself.
Publisher:
Digia Plc and/or its subsidiary(-ies)  (signed by SIEN Internet Products Ltd)

Product:
Qt5

Description:
C++ application development framework.

Version:
5.3.2.0

MD5:
880b54e6278c0da2c003ed6f29b7e59e

SHA-1:
549806310eade0a6ee8fc1dd70403ad296e10b31

SHA-256:
706792885ecaa3cbed62f3b4ecd407fffc498f8851f81c68950f7943875fb13a

Scanner detections:
1 / 68

Status:
Adware

Explanation:
While the Qt framework file itself is not dangerous, it is part of a program that has been detected as potentially unwanted or malicious.

Description:
This 'download manager' is also considered bundleware, a utility designed to download software (possibly legitimate or opensource) and bundle it with a number of optional offers including ad-supported utilities, toolbars, shopping comparison tools and browser extensions.

Analysis date:
11/5/2024 10:10:44 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Sien (M)
16.10.5.15

File size:
194.6 KB (199,280 bytes)

Product version:
5.3.2.0

Copyright:
Copyright (C) 2014 Digia Plc and/or its subsidiary(-ies).

Original file name:
Qt5WebKitWidgets.dll

File type:
Dynamic link library (Win32 DLL)

Bundler/Installer:
SIEN SuperInstall

Common path:
C:\users\{user}\appdata\roaming\getnowupdater\update.468\bin\qt5webkitwidgets.dll

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
2/2/2015 6:13:19 PM

Valid to:
2/3/2016 6:13:19 PM

Subject:
CN=SIEN Internet Products Ltd, O=SIEN Internet Products Ltd, L=London, C=GB

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121B83795C783CB891BECAAAEEF4B5E1F5B

File PE Metadata
Compilation timestamp:
9/11/2014 11:34:11 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:wLoEDHlk2Xicr4F/OnOkGDt2CX/mZmt8pjmaigeOBBFHCfHWoHnwxOGx:wVU/WGwHHx

Entry address:
0x13E58

Entry point:
9A, 0F, 01, 00, 24, A4, BC, 16, AE, E1, 01, 00, 70, DC, BC, 16, 9A, BE, 01, 00, F7, 41, BD, 16, 12, 9B, 01, 00, 68, 7D, BD, 16, 08, E0, 01, 00, EE, 0D, BE, 16, B0, F4, 01, 00, 82, 88, BE, 16, DA, BE, 01, 00, C8, A1, BE, 16, 26, 51, 01, 00, D0, E6, BE, 16, E0, 44, 02, 00, AB, 15, BF, 16, C0, AF, 01, 00, FD, C3, BF, 16, 30, B3, 01, 00, F2, F4, BF, 16, BE, 31, 01, 00, 64, 3D, C0, 16, 46, CE, 01, 00, 16, 59, C0, 16, 26, A2, 01, 00, D3, 79, C0, 16, B4, B5, 01, 00, 9A, 83, C0, 16, E8, AE, 01, 00, 9D, DC, C0, 16...
 
[+]

Code size:
77.5 KB (79,360 bytes)

Remove Qt5WebKitWidgets.dll - Powered by Reason Core Security