OpenCandy

Publisher Information

OpenCandy is a software developer located in San Diego, California in the United States*. The publisher primarily developes software that can be classified as adware. Thre are 15 additional code signing certificates issued to this publisher.
Authority:
COMODO CA Limited

Valid from:
8/26/2014 3:00:00 AM

Valid to:
8/27/2015 2:59:59 AM

Subject:
CN=OpenCandy, O=OpenCandy, STREET="510 Market St #301", L=San Diego, S=CA, PostalCode=92101, C=US

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00968f75def14b8896984d3b88276afa95

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.OpenCandy.G, PUP.Installer.OpenCandy, PUP.OpenCandy (M), PUP.OpenCandy.Installer (M)
100.00%

AVG
OpenCandy, AdPlugin
59.38%

Baidu Antivirus
Adware.Win32.OpenCandy, PUA.Win32.OpenCandy
43.75%

Dr.Web
Adware.OpenCandy.15, Adware.OpenCandy.71, Adware.OpenCandy.73, DLOADER.Trojan, Adware.OpenCandy.148
40.63%

ESET NOD32
Win32/OpenCandy (variant), Win32/OpenCandy.E potentially unsafe (variant)
34.38%

McAfee
Artemis!E1F9164170A2, Artemis!68E4331D4AFC, Artemis!C40FC4A0A9DA, Artemis!9C05864D6B40, Artemis!FF474E803B6B, Artemis!2DC97B051F5A, Artemis!95FBA66CA5DF
31.25%

AhnLab V3 Security
PUP/Win32.OpenCandy
31.25%

G Data
Win32.Application.OpenCandy
28.13%

Trend Micro House Call
Suspicious_GEN.F47V1205, Suspicious_GEN.F47V1213, Suspicious_GEN.F47V0113, Suspicious_GEN.F47V0120, Suspicious_GEN.F47V0310, Suspicious_GEN.F47V0417
28.13%

Fortinet FortiGate
Riskware/OpenCandy
21.88%

1 / 68      (PUP)
dm321b.exe (Installation helper by OpenCandy)  (c2d0639bd19f5605602e83188819dbd5)

1 / 68      (PUP)
dm321b.exe (Installation helper by OpenCandy)  (e0d2c4d42c7fd54f46851d98a2952a90)

1 / 68      (PUP)
du77b.exe (Installation helper by OpenCandy)  (1edcefdda3710a0f0e5e621d82e70eb9)

1 / 68      (PUP)
dm321b.exe (Installation helper by OpenCandy)  (0eddc58e4e3bc7499c2b518ffbbf9e12)

1 / 68      (PUP)
dh145b.exe (Installation helper by OpenCandy)  (1af51bcceb65cb37895ecdc486c8a74f)

1 / 68      (PUP)
dh145b.exe (Installation helper by OpenCandy)  (aaa211be2d6a380f126aeaef638b6f87)

1 / 68      (PUP)
du106b.exe (Installation helper by OpenCandy)  (e67f576148b25edddd8e8705f939a3be)

1 / 68      (PUP)
du109b.exe (Installation helper by OpenCandy)  (a2f7de6bc8e94d4e63b39302199d6ba5)

1 / 68      (PUP)
ocsetuphlp.dll (RecEng Library by OpenCandy)  (e7c55f2cc572478e8c07e6f7b0d65fb4)

8 / 68      (PUP)
dh237.exe (Installation helper by OpenCandy)  (323e749fddd544df60385f7d879e2986)

1 / 68      (PUP)
dh17.exe (Installation helper by OpenCandy)  (37dac18bdb1d6b4c8803a4a805bf5fd1)

1 / 68      (PUP)
dh244.exe (Installation helper by OpenCandy)  (21290f61988c8ca3b9f65f832baf0d79)

11 / 68    (PUP)
du339b.exe (Installation helper by OpenCandy)  (95fba66ca5df2fef063738ed02c6c0fd)

1 / 68      (PUP)
dh145b.exe (Installation helper by OpenCandy)  (fb149cd25709c7c4d29edb6eb54ecce3)

1 / 68      (PUP)
dh143b.exe (Installation helper by OpenCandy)  (7eeb10d065c37e736d12536028785ea5)

5 / 68      (PUP)
dh138b.exe (Installation helper by OpenCandy)  (1c93e9c939548ff280a6321d37834433)

6 / 68      (PUP)
dh135b.exe (Installation helper by OpenCandy)  (c314610cbe254bec17be8da29b24f02d)

3 / 68      (PUP)
dh133b.exe (Installation helper by OpenCandy)  (d9454b75dc54266a52cb72ad0d4010be)

7 / 68      (PUP)
dh117b.exe (Installation helper by OpenCandy)  (2dc97b051f5a382b2f506d057b88b4f8)

4 / 68      (PUP)
dh119b.exe (Installation helper by OpenCandy)  (fae2f4ec06b07768a52f7f7f33f7a220)

4 / 68      (PUP)
du115b.exe (Installation helper by OpenCandy)  (2fdbe0ba3a97d504c8a82fac16bc65e1)

15 / 68    (PUP)
du109b.exe (Installation helper by OpenCandy)  (ff474e803b6b7d2c116edc695588c8bc)

12 / 68    (PUP)
du105b.exe (Installation helper by OpenCandy)  (524e29297739c9c5608400a59ee66ba2)

7 / 68      (PUP)
du90b.exe (Installation helper by OpenCandy)  (9c05864d6b40b7e570cec0dbb0b340bf)

11 / 68    (PUP)
du77b.exe (Installation helper by OpenCandy)  (881394875dc89aa7db3d404603c39cc4)

13 / 68    (PUP)
ocsetuphlp.dll (Rec Library by OpenCandy)  (c40fc4a0a9daa6635d4fe6b0acf312b5)

5 / 68      (PUP)
du73b.exe (Installation helper by OpenCandy)  (68e4331d4afca9802bd1d2251ae67b6f)

6 / 68      (PUP)
du340b.exe (Installation helper by OpenCandy)  (f0b3c151c25cc5fd45cd63ecda01d5fa)

7 / 68      (PUP)
du335b.exe (Installation helper by OpenCandy)  (f5ab18db53ffefdfd7db03b6ee2b96bc)

11 / 68    (PUP)
du330b.exe (Installation helper by OpenCandy)  (266fbbce76b8884bb99e84db433e9bd7)

 
Latest 30 of 32 files

The certificates below are also signed by OpenCandy.

1E9E68F089EA94C394F7ABDE43771620  (Jul 30, 2015 to Jul 28, 2016)

455D3F0BDDD2A1EDC4093B2F6B7C5EF6  (Aug 26, 2014 to Aug 27, 2015)

1A4DE208E2EAA73D520698E2D08C7D3D  (Aug 26, 2014 to Aug 27, 2015)

132982A2FBDC37FCDC8D57346010BC5F  (Aug 26, 2014 to Aug 27, 2015)

00D8969D7474F2E05D880A6058A425B9A3  (Aug 26, 2014 to Aug 27, 2015)

59AACE402387A76F641AEB61B78F5E5E  (Aug 26, 2014 to Aug 27, 2015)

008C39E02810FFAD0BE835267C2DF1EB91  (Aug 26, 2014 to Aug 27, 2015)

7B224CA971E41AF3F000BE4B05FC833A  (Aug 26, 2014 to Aug 27, 2015)

00E9AA9CF62D76917409F82A1BEA2A62ED  (Aug 26, 2014 to Aug 27, 2015)

5AA7E515112EAEB906A3ABD37394DAD6  (Aug 26, 2014 to Aug 27, 2015)

10 of 15 code signing certificates issued

The following publishers (by Authenticode signature organization name) are related.

* Note, the details and description above are based on the code signing digital signature issued to OpenCandy by COMODO CA Limited on August 26, 2014 with the serial number '00968f75def14b8896984d3b88276afa95'.