Evangelion Group

Publisher Information

Evangelion Group is a software publisher located in Nicosia, Cyprus in CY*. The company is a primary distributor of unwanted software. Evangelion leverages the Crossrider extension platform to develope and distribute a number of adware products for the web browser that inject advertisements.
Authority:
COMODO CA Limited

Valid from:
7/27/2014 9:00:00 PM

Valid to:
7/28/2015 8:59:59 PM

Subject:
CN=Evangelion Group, O=Evangelion Group, STREET=Athinodorou 3, STREET=Dasoupoli Strovolos, L=Nicosia, S=Cyprus, PostalCode=2025, C=CY

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
0095e2a1168ff10f1d56cf5ffe4abc7450

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.Crossrider (M), PUP.Brightcircle (M)
100.00%

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)
Newtonsoft.Json.dll (Json.NET by Newtonsoft)  (05f2ebc31a45b6c450469e5b2004c0b6)

1 / 68      (Adware)

1 / 68      (Adware)
2092ea84-7797-441a-b2ed-b5bdd74e27fd.dll  (5cb067bdd8c6e210a37df35a82996d33)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)
cinema-plus-1.2-bho.dll (Cinema-Plus-1.2 by Cinema Plus)  (c0b5892fd668b8d133f8f5baa6e96ce1)

1 / 68      (Adware)
cinema-plus-1.2-bg.exe (Cinema-Plus-1.2 by Cinema Plus)  (5a6f03630b1cb4ea08156cf89dc0eed2)

1 / 68      (Adware)

1 / 68      (Adware)
hqpurev1.8-bho64.dll (HQPureV1.8 by HQPure)  (f718a31c42f965ed63e588dc04afcd2f)

1 / 68      (Adware)
e6c10e78-398c-48fe-a77b-192089c238f8.dll  (7568366fba4c58f16fdf5eb5cd1d29ba)

1 / 68      (Adware)
total-1.8-bg.exe (Total-1.8 by HQ-VPro)  (676f6d6f3d5e7ecfe663697dc3f7ba12)

1 / 68      (Adware)
total-1.8-bho64.dll (Total-1.8 by HQ-VPro)  (457307dc51c32edca88a82f28c7f751e)

1 / 68      (Adware)
38f0bf5d-4d80-4c7c-8e9c-c82609228320-5.exe (V-9.1HQ)  (745db3979100ac218939349af3e2299a)

1 / 68      (Adware)
gwupsfs.exe (V-9.1HQV17.09)  (fcb5d9151db2c45027f7ddd315e565fa)

1 / 68      (Adware)
532c2144-24e3-4895-b664-e73833c986ac.exe (Torpedo)  (39ecad7b4702b26649b07bf5b3951d6d)

1 / 68      (Adware)
v-9.1hq-bg.exe (V-9.1HQ)  (e88a3401e3548fc0374aa8cc01fa40f2)

1 / 68      (Adware)
62ee1abf-e6c9-473b-9385-63ac3879d464.exe (Torpedo)  (f5e04c837ee18e09e47bf548e19e1a26)

1 / 68      (Adware)
1da038c3-9091-4574-97bb-df1869e2b294-64.exe (HD-V1.4)  (c79db0038b6963fadaaae3533c7eaba6)

1 / 68      (Adware)

1 / 68      (Adware)
325d5169-ad11-440e-9fe2-9b8ebfed5699.dll  (7f3cce4346e5ef2a5d4d9c4aee30c5c2)

1 / 68      (Adware)
uninstall.exe  (36b15cc690a173617bed045110d417f2)

1 / 68      (Adware)
hdpurev9.5-bho.dll (HDPureV9.5 by HDPure)  (756a5a788680107e5e8ab83eb9e91e9f)

1 / 68      (Adware)
hdpurev9.5-bg.exe (HDPureV9.5 by HDPure)  (014398ea381ca96ce122009871499aa2)

1 / 68      (Adware)
4791ee08-82e2-4f4c-82c8-fa1f3f3070da.dll  (35566e0dd9efa7cfb8469a1f6bc0ce8c)

1 / 68      (Adware)

1 / 68      (Adware)
hdpurev9.5-codedownloader.exe (HDPureV9.5 by HDPure)  (b8b4dc29ea5be5e1a7dee0d3b1d7af50)

 
Latest 30 of 10,035 files

The following publishers (by Authenticode signature organization name) are related.

30 of 32 publishers

* Note, the details and description above are based on the code signing digital signature issued to Evangelion Group by COMODO CA Limited on July 27, 2014 with the serial number '0095e2a1168ff10f1d56cf5ffe4abc7450'.