home

LLC `ELEKRAN SOFT`

Publisher Information

LLC `ELEKRAN SOFT` is a software publisher located in Odesa, Odeska Obl in Ukraine*. A majority of the programs developed by the company can be classified as adware or other potentially unwanted programs.
Authority:
COMODO CA Limited

Valid from:
5/29/2015 2:00:00 AM

Valid to:
5/29/2016 1:59:59 AM

Subject:
CN=LLC `ELEKRAN SOFT`, O=LLC `ELEKRAN SOFT`, STREET=Malynovskoho 16A, L=Odesa, S=Odeska obl, PostalCode=65017, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
56bcc6ea7cbc1bf2c29e3b10b388cf8e

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.BitcoinMiner.ELEKRANSOFT.Meta (M), PUP.CPUMiner.ELEKRANSOFT.Installer (M), PUP.CPUMiner.ELEKRANSOFT (M), PUP.CPUMiner.ELEKRANS.Installer (M), PUP.CPUMiner.ELEKRANS (M)
89.47%

Dr.Web
Trojan.BtcMine.711, Tool.BtcMine.586
15.79%

AVG
Generic
15.79%

ESET NOD32
Win32/BitCoinMiner.BY potentially unsafe (variant)
13.16%

avast!
Multi:BitCoinMiner-B [PUP], Win32:Malware-gen
13.16%

Avira AntiVirus
TR/BitCoinMiner.2740224.1, TR/BitCoinMiner.2519320.1
13.16%

Emsisoft Anti-Malware
Gen:Variant.Strictor.87902
10.53%

F-Secure
Gen:Variant.Strictor.87902
10.53%

Baidu Antivirus
Hacktool.Win32.BitCoinMiner
7.89%

VIPRE Antivirus
Trojan.Win32.Generic
7.89%

1 / 68      (PUP)
gpuminer-setup.exe (GPU Miner - Setup by Open Source)  (9e1501f7b5319ccb3f6d49bfeed1e495)

1 / 68      (PUP)
clinfo.exe  (54778d85b68685efc9ffc76c38f02efd)

1 / 68      (PUP)
gpuminer-setup.exe (GPU Miner - Setup by Open Source)  (38f8d09f8200f5ffbc62ab4cc182480f)

1 / 68      (PUP)
awha9e7.tmp (ETHM - Setup by Open Source)  (5f12969d6804544bc41c0d02b98c3153)

1 / 68      (PUP)
ethm.exe  (e5205bcb6f80aac09fe08c1c2c4b5105)

1 / 68      (PUP)
cdn.exe (CPU Miner - Setup by Open Source)  (9a2fa2d9b65a6c77cf31d48e5af88c51)

1 / 68      (PUP)
ethm.exe  (9a1a62e571eed54cbaa6c7b042874ca8)

1 / 68      (PUP)
clinfo.exe  (450d980a7d6ebe0c4cbb055b99b93c0b)

1 / 68      (PUP)
clinfo.exe  (da9ae751b0cdda0edaa084840aee8ace)

1 / 68      (PUP)
cpuminer-x86.exe (cpuminer)  (7a4bac0363da6d48e35403d326c31d76)

1 / 68      (PUP)
cpuminer-x11-11.exe (ETHM - Setup by Open Source)  (fcba7ebeacffcda53fb3300b1a74cf43)

1 / 68      (PUP)
gpuminer-setup.exe (GPU Miner - Setup by Open Source)  (877afe3a5d621337a4a4174e0355a922)

1 / 68      (PUP)
cpuminer-x11-11.exe (ETHM - Setup by Open Source)  (5cacc4033a92be68428dd973aee3d928)

1 / 68      (PUP)
cpuminer-x86.exe (cpuminer)  (3af647a75efec5c24e0ac7c32e18c8e4)

11 / 68    (PUP)
gpuminer-setup.exe (GPU Miner - Setup by Open Source)  (2b5f10570862d1cefdb7f78d761cfb72)

4 / 68      (PUP)
awh48de.tmp (ETHM - Setup by Open Source)  (0ff83545552d8a21256c2c65e0c236e0)

3 / 68      (Malware)
ethm.exe  (73f947a611e11ad92faa69217627dc03)

1 / 68      (PUP)
adv_183.exe (ETHM - Setup by Open Source)  (a38bc95184bc4d42a4ec85641bd578da)

1 / 68      (PUP)
awhd7b9.tmp (ETHM - Setup by Open Source)  (103737d228f85d8cb56ea548509a637f)

3 / 68      (Malware)
ethm.exe  (e7f490c41dfe1ea7463dd535a035cba5)

1 / 68      (PUP)
setup.exe (ETHM - Setup by Open Source)  (5f9a3c7e47c03c5f64e9dbd733c5ab87)

1 / 68      (PUP)
ethm.exe  (9ec8f0e5afe1c7a340ae6c6fe7b03626)

4 / 68      (Malware)
ethm.exe  (51ed779be1257faade22ea61c7c5b26c)

1 / 68      (PUP)
clinfo.exe  (cb7bd869ec6843be8a80a5bc0c716f45)

1 / 68      (PUP)
ethm.exe  (e65fb8a4fec9d493963d3b9dde46c8bb)

1 / 68      (PUP)
gpuminer-setup.exe (GPU Miner - Setup by Open Source)  (230b058da5cee2da20091ce4c99b266c)

1 / 68      (PUP)
cpuminer-gw64.exe  (6c528a1b73996b36ee88f9731f753f80)

16 / 68    (PUP)
cpuminer-x86.exe (cpuminer)  (ee886db6ea372104f0dcdc01dea6f20f)

1 / 68      (PUP)
cpuminer.exe (CPU Miner - Setup by Open Source)  (ee15f69f62433d423196152262985b9c)

2 / 68      (PUP)
cpuminer-gw64.exe  (2315691cd58f1d8f41048e098d4a7ef0)

 
Latest 30 of 38 files

Downloads URLs for files signed by LLC `ELEKRAN SOFT`.

1 / 68      (PUP)
http://cdn-14b7.kxcdn.com/cdn.exe  (ee15f69f62433d423196152262985b9c)

1 / 68      (PUP)
http://cdn-14b7.kxcdn.com/cdn.exe  (5cacc4033a92be68428dd973aee3d928)

1 / 68      (PUP)
http://cdn-14b7.kxcdn.com/cdn.exe  (fcba7ebeacffcda53fb3300b1a74cf43)

1 / 68      (PUP)
http://113.171.224.207/.../cdn.exe  (fcba7ebeacffcda53fb3300b1a74cf43)

1 / 68      (PUP)
http://cdn-14b7.kxcdn.com/cdn.exe  (a38bc95184bc4d42a4ec85641bd578da)

1 / 68      (PUP)
http://cdn-14b7.kxcdn.com/cdn.exe  (2f855fb08a3f49b73ce5945ea57ca45f)

1 / 68      (PUP)
http://cdn-14b7.kxcdn.com/cdn.exe  (811fe4f7db2bc422fa5d102b7d5b7a18)

16 / 68    (PUP)
http://cdn-14b7.kxcdn.com/cdn.exe  (ee148eefd69bb57a966cea9be5ac3ebb)

The following websites host and distribute files published by LLC `ELEKRAN SOFT`.

cdn-14b7.kxcdn.com

The following publishers (by Authenticode signature organization name) are related.

Off To Up LLC

LLC

Promgazstroi Proekt, TOV

Synaps Proekt, TOV

LLC

Ukrainski TELE Radio Systemy, TOV

LLC TRK

SEIL SOFT, TOV

The Group

DZHPI-PROEKT

SOFT Servis, TOV

Novograd Proekt, TOV

Realinvest SOFT, TOV

SOFT Sistems, TOV

TELE MAKS, TOV

* Note, the details and description above are based on the code signing digital signature issued to LLC `ELEKRAN SOFT` by COMODO CA Limited on May 29, 2015 with the serial number '56bcc6ea7cbc1bf2c29e3b10b388cf8e'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.