sevenzip-setup-rx.exe

Stanislav Kabin

The is the installer for the WebPick InstalleRex download manager which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed without consent. The application sevenzip-setup-rx.exe by Stanislav Kabin has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. It runs as a scheduled task under the Windows Task Scheduler triggered daily at a specified time.
Publisher:
Stanislav Kabin  (signed and verified)

MD5:
b315095cf994c24dc74646a71475aafe

SHA-1:
a5e4d7a371e94a534a990cacddbf47d57db61716

SHA-256:
901976fa72ad5a565ad1433cfe95e7500554dcae02a80675d563f26be243ed92

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
12/25/2024 2:11:28 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.WebPick (M)
17.3.14.13

File size:
379.4 KB (388,472 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\ProgramData\{e1c25c55-07d7-9e78-e1c2-25c5507d7154}\sevenzip-setup-rx.exe

Digital Signature
Signed by:

Authority:
Unizeto Technologies S.A.

Valid from:
6/23/2014 4:28:15 AM

Valid to:
6/23/2015 4:28:15 AM

Subject:
E=Stanislav.Kabin@hotmail.com, CN=Stanislav Kabin, O=Stanislav Kabin, C=RU

Issuer:
CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
3469022839E88D596EA6FE14C990AF76

File PE Metadata
Compilation timestamp:
3/14/2013 5:04:10 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

Entry address:
0x1FD3B

Entry point:
E8, 54, 12, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, B0, C7, 43, 00, E8, 5F, 17, 00, 00, E8, 21, 14, 00, 00, 0F, B7, F0, 6A, 02, E8, E7, 11, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, C8, 0B, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8...
 
[+]

Entropy:
6.2152

Code size:
147.5 KB (151,040 bytes)

Scheduled Task
Task name:
Bidaily Synchronize Task

Trigger:
Daily (Runs daily at 3:05 PM)


Remove sevenzip-setup-rx.exe - Powered by Reason Core Security