RewardsArcadeSuite.dll

RewardsArcade Suite

215 Apps

This file is a support library for an advertising-based software package (potentially unwanted/adware) distributed by 50onRed used to hijack the Internet browser search provider. The module RewardsArcadeSuite.dll, “RewardsArcade Suite BHO” by 215 Apps has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘RewardsArcadeSuite’.
Publisher:
215 Apps  (signed and verified)

Product:
RewardsArcade Suite

Description:
RewardsArcade Suite BHO

Version:
1.0.0.1

MD5:
9edfd5ced4ba7ac782d97a8e25e2e3d9

SHA-1:
fdd505443bb9f611e33eeba224b8e7ae4729a08b

SHA-256:
86e617e6065eef7f622b924700d9992f0f6943254ff26c9f84441ad261742dc2

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
12/24/2024 3:34:57 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.50OnRed (M)
17.3.10.15

File size:
515.8 KB (528,216 bytes)

Product version:
1.0.0.1

Copyright:
Copyright 2010

Original file name:
RewardsArcadeSuite.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\rewardsarcadesuite\rewardsarcadesuite.dll

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
10/25/2011 2:00:00 AM

Valid to:
10/25/2012 1:59:59 AM

Subject:
CN=215 Apps, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=215 Apps, L=Philadelphia, S=Pennsylvania, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4D064A782BC23A29CC9B8499A9F4AFB4

Registration
CLSIDs:
{48FFD5A7-47E1-4679-AC36-FA8C5A554547}, {B6EF6C45-5E8D-4c3b-B580-A5073261A381}, {D9236B1F-654F-407b-BD9C-1CB5C5DB21B1}

ProgIDs:
RewardsArcadeSuite.FBApi.1, RewardsArcadeSuite.BHO.1, RewardsArcadeSuite.Sandbox.1

COM registered:
Yes

File PE Metadata
Compilation timestamp:
11/2/2011 10:26:49 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

Entry address:
0x2370B

Code size:
310 KB (317,440 bytes)

Internet Explorer BHO
Display name:
RewardsArcadeSuite

CLSID:
{B6EF6C45-5E8D-4c3b-B580-A5073261A381}


Remove RewardsArcadeSuite.dll - Powered by Reason Core Security