Baggio Technologies (BrightCircle Investments Limited)

Publisher Information

Baggio Technologies (BrightCircle Investments Limited) is a software publisher located in Nicosia, Cyprus in CY*. Part of the Brightcircle group of adware web browser extensions that utilize the Crossrider framework. These extensions are also known as Freven and are designed to utilize the framework in order to inject advertising banners in the underlying web browsers white space or by overlaying new ads over existing ones. Brightcircle distributes its software through malvertising practices such as displaying web pages taht tell the user that various core Windows software is out-dated and needs updating as well as drive-by downloads.
Authority:
COMODO CA Limited

Valid from:
11/17/2014 1:00:00 AM

Valid to:
11/18/2015 12:59:59 AM

Subject:
CN=Baggio Technologies (BrightCircle Investments Limited), O=Baggio Technologies (BrightCircle Investments Limited), STREET=Athinodorou 3, STREET=Dasoupoli Strovolos, L=Nicosia, S=Cyprus, PostalCode=2025, C=CY

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
469910caa5b253b7b000122e7059f344

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
100.00%

AVG
Win32/DH, Win.Threat.High
100.00%

Reason Heuristics
Adware.BrightCircle, Adware.BrightCircle.Installer
100.00%

McAfee
Artemis!C560CD8C70FB, Artemis!6D194AF04344, Artemis!8E3715B08174, Artemis!AFA1D2D20863
80.00%

Kaspersky
HEUR:Trojan-Downloader.Win32.Generic
80.00%

Trend Micro House Call
Suspicious_GEN.F47V1207, Suspicious_GEN.F47V1228, Suspicious_GEN.F47V1210
60.00%

IKARUS anti.virus
Win32.SuspectCrc
60.00%

avast!
Win32:Dropper-gen [Drp]
40.00%

AhnLab V3 Security
PUP/Win32.OutBrowse
40.00%

Rising Antivirus
PE:Trojan.Win32.Generic.17D43AA0!399784608
20.00%

14 / 68    (Adware)
hqvideo-fr-testinstaller.exe  (afa1d2d20863cf0d10f0aa70aa7e0b0d)

6 / 68      (Adware)
setup.exe  (8e3715b0817492cf9d78efa3d25eb36b)

9 / 68      (Adware)
2474s.exe  (6d194af043448b81b263a4264a4357c0)

4 / 68      (Adware)
setup.exe  (971b940056a8b2fd478bcbd88323fc23)

5 / 68      (Adware)
1_offer_4.exe  (c560cd8c70fb1d087457f80b507f41e9)

Downloads URLs for files signed by Baggio Technologies (BrightCircle Investments Limited).

9 / 68      (Adware)
http://dl.ourstaticdatastorage.com/.../2474s.exe  (6d194af043448b81b263a4264a4357c0)

5 / 68      (Adware)
http://113.171.224.211/.../1504s.exe  (c560cd8c70fb1d087457f80b507f41e9)

9 / 68      (Adware)
http://dl.newstatsdatanet.com/.../2474s.exe  (6d194af043448b81b263a4264a4357c0)

9 / 68      (Adware)
http://dl.staticinputserv.com/.../2474s.exe  (6d194af043448b81b263a4264a4357c0)

9 / 68      (Adware)
http://dl.newstatsclientcloud.com/.../2474s.exe  (6d194af043448b81b263a4264a4357c0)

4 / 68      (Adware)
http://dl.newstaticdatacloud.com/split/.../setup.exe  (971b940056a8b2fd478bcbd88323fc23)

4 / 68      (Adware)
http://dl.newstaticinfosrv.com/split/.../setup.exe  (971b940056a8b2fd478bcbd88323fc23)

5 / 68      (Adware)
http://113.171.224.243/.../1504s.exe  (c560cd8c70fb1d087457f80b507f41e9)

9 / 68      (Adware)
http://dl.ourinputinfonet.com/.../2474s.exe  (6d194af043448b81b263a4264a4357c0)

9 / 68      (Adware)
http://dl.onlineinputstorage.com/.../2474s.exe  (6d194af043448b81b263a4264a4357c0)

6 / 68      (Adware)
http://cdn.webdataserv.com/.../setup.exe  (8e3715b0817492cf9d78efa3d25eb36b)

9 / 68      (Adware)
http://dl.onlinegenserv.com/.../2474s.exe  (6d194af043448b81b263a4264a4357c0)

14 / 68    (Adware)
http://95.211.82.145/file/Main/2514s(1).exe/.../  (afa1d2d20863cf0d10f0aa70aa7e0b0d)

5 / 68      (Adware)
http://dl.newstaticdatacloud.com/.../1504s.exe  (c560cd8c70fb1d087457f80b507f41e9)

9 / 68      (Adware)
http://dl.newstaticinputserv.com/.../2474s.exe  (6d194af043448b81b263a4264a4357c0)

5 / 68      (Adware)
http://dl.newstaticinfosrv.com/.../1504s.exe  (c560cd8c70fb1d087457f80b507f41e9)

5 / 68      (Adware)
http://dl.newstaticinputserv.com/.../1504s.exe  (c560cd8c70fb1d087457f80b507f41e9)

9 / 68      (Adware)
http://dl.newstatsdemosrv.com/.../2474s.exe  (6d194af043448b81b263a4264a4357c0)

9 / 68      (Adware)
http://dl.newstaticinfosrv.com/.../2474s.exe  (6d194af043448b81b263a4264a4357c0)

The following websites host and distribute files published by Baggio Technologies (BrightCircle Investments Limited).

The following publishers (by Authenticode signature organization name) are related.

* Note, the details and description above are based on the code signing digital signature issued to Baggio Technologies (BrightCircle Investments Limited) by COMODO CA Limited on November 17, 2014 with the serial number '469910caa5b253b7b000122e7059f344'.