Blue Bulletin

Publisher Information

Blue Bulletin is a brand of the Sambreel/Yontoo group, a web advertising company located in Carlsbad, CA. The company is a primary distributor of unwanted software. It is part of the Yontoo/Sambreel group and distributes web browser add-ons, typically potentially unwanted and adware in nature, that are designed to modify a user's typical search beahvior as well as display context and popup advertising.
Authority:
VeriSign, Inc.

Valid from:
3/9/2015 5:00:00 PM

Valid to:
3/9/2016 3:59:59 PM

Subject:
CN=Blue Bulletin, O=Blue Bulletin, L=San Diego, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
459de00598751e09c206703eb0d4191c

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.Yontoo.Search (M), PUP.Yontoo (M), Adware.Yontoo (M)
100.00%

1 / 68      (Adware)
{4c2490b8-3135-4953-8c3d-6c03c4721091}gw.sys (StdLib)  (ee1c9598b8e5457bd640c48aed5d387b)

1 / 68      (Adware)
{814076f7-4877-47f4-9556-67481e90cff1}gt.sys (StdLib)  (53d9ecb1d1d0dfa1a77ad2e576b4a9c3)

1 / 68      (Adware)
{83e92b7b-627b-4a35-bf0d-4bbba5629f35}w.sys (StdLib)  (bba01f0c9d5fbceeec20c7fd43dba178)

1 / 68      (Adware)
appmgr.bak  (babe2f0552ddb78f41adfbf710a599c5)

1 / 68      (Adware)
AnyAngle2016021403.exe  (19447db66946ff18eea5e445405ad2b1)

1 / 68      (Adware)
AnyAngle2016021408.exe  (98c865c39a20961c52ab08b6f404bef3)

1 / 68      (Adware)
anyangleun.exe  (12f5dfbf7eed28f5a16174efef9306b9)

1 / 68      (Adware)
dl  (c5f730e004db661f5c1a44320a7f3fa2)

1 / 68      (Adware)
AnyAngle2016020701.exe  (6eb81065a51fecbf37010dba40d9e22a)

1 / 68      (Adware)
AnyAngle2015101610.exe  (482ceba360999925bdb1f379aa58df40)

1 / 68      (Adware)
{4c2490b8-3135-4953-8c3d-6c03c4721091}gw.sys (StdLib)  (424df75c9f3d10706e683416d0abc8ed)

1 / 68      (Adware)
{de23c9ad-1ac1-4eb4-8cd5-dc902206974a}w.sys (StdLib)  (c84f7b65bc74bbaecbadd18324ce9f95)

1 / 68      (Adware)
{83e92b7b-627b-4a35-bf0d-4bbba5629f35}w.sys (StdLib)  (599d7962e09fee27537d667ae626e61e)

1 / 68      (Adware)
{7d900b28-8547-42a8-b962-e2bc304f88e1}w.sys (StdLib)  (9d4a05a84fcbd206ece7db2a8accda02)

1 / 68      (Adware)
{4c2490b8-3135-4953-8c3d-6c03c4721091}gw.sys (StdLib)  (71e9849d0e7e67397d0a323489da4a92)

1 / 68      (Adware)
{1312fd86-98b9-4a94-9973-3fb8c4d5f02d}w.sys (StdLib)  (5b0d7c4de4f8aff86ebd511d3001c08b)

1 / 68      (Adware)
{4c2490b8-3135-4953-8c3d-6c03c4721091}w.sys (StdLib)  (6c510abe370050bcc17701ce56123019)

1 / 68      (Adware)
dl  (0b08b401c5356147f1123ee80f89f563)

1 / 68      (Adware)
appmgr.bak  (875fee7159f5f0fb7caef27073ab5364)

1 / 68      (Adware)
{4c2490b8-3135-4953-8c3d-6c03c4721091}gw.sys (StdLib)  (18bc364d3fd9f2b8d3290d7ff455f9d3)

1 / 68      (Adware)
4c24_4.dll (by TODO: <Company name>)  (ad51e4de78e75a339399d760ea159434)

1 / 68      (Adware)
4c24_3.dll (by TODO: <Company name>)  (33138eebf91101bbdb122344fc93cec8)

1 / 68      (Adware)
{5eccf094-0d76-4ac7-8f26-aabcc83f122b}w.sys (StdLib)  (fd749cfc1d2034fa5d77455bfe9c4ffc)

1 / 68      (Adware)
anyangle.purbrowseg.dll  (3fdf7ac9cd1db17b58dfaa8d4bf7e21c)

1 / 68      (Adware)
anyangle.gcupdate.dll  (12029c43e84a3016b2a31856717068cb)

1 / 68      (Adware)
anyangle.findlib.dll  (26b7a948b17ac59830564e47d39bf7f6)

1 / 68      (Adware)
anyangle.ffupdate.dll  (0a9767c0c38d4f59fb4e3daca89ca11d)

1 / 68      (Adware)
anyangle.expext.dll  (2dec1c6b5dab1a8f4b9596a83c689636)

1 / 68      (Adware)
anyangle.browseradapter.dll  (9deef4fa2a1c8ad3a7131bcd14cbdbfa)

1 / 68      (Adware)
anyangle.purbrowse64.exe  (4aadb6566389e747d2ae16c0c7b31783)

 
Latest 30 of 6,799 files

The following publishers (by Authenticode signature organization name) are related.

30 of 117 publishers

* Note, the details and description above are based on the code signing digital signature issued to Blue Bulletin by VeriSign, Inc. on March 09, 2015 with the serial number '459de00598751e09c206703eb0d4191c'.