home

UNINFO SISTEMAS LTDA ME

Publisher Information

UNINFO SISTEMAS LTDA ME is a software developer located in chapeco, Santa Catarina in Brazil*. A majority of the programs developed by the company can be classified as adware or other potentially unwanted programs. Thre are 8 additional code signing certificates issued to this publisher.
Authority:
thawte, Inc.

Valid from:
11/8/2015 10:00:00 PM

Valid to:
9/24/2016 8:59:59 PM

Subject:
CN=UNINFO SISTEMAS LTDA ME, O=UNINFO SISTEMAS LTDA ME, L=chapeco, S=santa catarina, C=BR

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
355dd32e9a65da38442099f9bec250eb

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.UNINFOSISTEMASAME (M), PUP.UNINFOSISTEMASAME.Installer (M), PUP.UNINFOSI (M), PUP (M)
85.71%

Emsisoft Anti-Malware
Gen:Trojan.Heur.DP.jTX@ayM2Pzhi, Gen:Variant.Strictor.101397, Gen:Variant.Symmi.58476, Gen:Trojan.Heur.DP.jTX@ayeQh!ji, Gen:Variant.Symmi.59499
14.29%

MicroWorld eScan
Gen:Trojan.Heur.DP.jTX@ayM2Pzhi, Gen:Variant.Symmi.58476, Gen:Trojan.Heur.DP.jTX@ayeQh!ji, Gen:Variant.Symmi.59499, Trojan.Spy.Banker.ADDH
14.29%

G Data
Gen:Trojan.Heur.DP.jTX@ayM2Pzhi, Gen:Variant.Symmi.58476, Gen:Trojan.Heur.DP.jTX@ayeQh!ji, Gen:Variant.Symmi.59499, Win32.Trojan.Agent.36DVY6
14.29%

avast!
Win32:Banker-MOB [Trj], Win32:Banker-MOH [Trj]
11.43%

Arcabit
Trojan.Heur.DP.ED92BA, Trojan.Symmi.DE46C, Trojan.Heur.DP.EDC3FB, Trojan.Symmi.DE86B
11.43%

Bitdefender
Gen:Trojan.Heur.DP.jTX@ayM2Pzhi, Gen:Variant.Symmi.58476, Gen:Trojan.Heur.DP.jTX@ayeQh!ji, Gen:Variant.Symmi.59499
11.43%

K7 AntiVirus
Unwanted-Program , Spyware
11.43%

Lavasoft Ad-Aware
Gen:Variant.Symmi.58476, Gen:Trojan.Heur.DP.jTX@ayeQh!ji, Gen:Variant.Symmi.59499, Trojan.Spy.Banker.ADDH
11.43%

ESET NOD32
Win32/Packed.Themida.ABL (variant), Win32/Spy.Banker.ACDG (variant)
11.43%

1 / 68      (Malware)
resx.exe  (c1aa5811c3a2e6a363affd3c07877910)

1 / 68      (Malware)
timp.exe  (411b72d16c319b6bfa966f6a3e53461e)

1 / 68      (Malware)
rank.exe  (7a1c15db810fd36921c68db2902cc9cd)

1 / 68      (Malware)
works.exe  (9eac2f34792ecd94d025bf1b74befaa3)

1 / 68      (Malware)
homix.exe  (6435a17a0ee42e79311e389df7cb5f32)

1 / 68      (Malware)
mitos.exe  (7c8d02acfb4ae65245caa8e715022324)

1 / 68      (PUP)
hapt.exe  (ffa7e2b4396a1765e98625c2ffd51db4)

1 / 68      (PUP)
igp.exe (Dasa)  (b849a7381c3336901e3b4c02335b07df)

1 / 68      (PUP)
cent.exe  (81a01fee2310ea54f152447e7316022a)

1 / 68      (PUP)
cent.exe  (328b778d12103b7070c9ec60e7752c51)

1 / 68      (PUP)
zunk.exe (Dasa)  (0c6a195c3694c195ee2e226fb114d000)

1 / 68      (PUP)
dmp.exe (Dasa)  (12717480f0f03fa7baa59b3ad8cafa07)

1 / 68      (PUP)
lock.exe  (7122d256765463db1fbfe3c7e3637872)

1 / 68      (PUP)
zanck.exe  (d257812dd7e6d45e8520aed47ec145fb)

1 / 68      (PUP)
resx.exe  (7ca3ef62fb3c817c561e5582f02213e2)

1 / 68      (PUP)
dmp.exe  (cc298e12a3303c6e807fb0ff031362d5)

1 / 68      (PUP)
cent.exe  (36dc0d30aab85e8bb78533b9f474f7f3)

1 / 68      (PUP)
hevp.exe  (5ad8220915034d82dce245f17e1b7a27)

1 / 68      (PUP)
works.exe  (5966d7b4dc93370f96411e9f89f956a4)

1 / 68      (PUP)
homix.exe  (edbc3381353671b09a498074d78f2510)

1 / 68      (PUP)
hapt.exe  (c09339399a0c06f0ddacba921b4f6440)

1 / 68      (PUP)
trz7efe.tmp  (a13c852d95d2e0ec4bc1264a516ad64b)

19 / 68    (Malware)
rank.exe  (d0db3324bd7a90d7d1dd577d061a7128)

26 / 68    (PUP)
homix.exe  (f5dce62b7aa98fec25aeec16bc4255d3)

4 / 68      (PUP)
dmp.exe  (a8ce436b86e7ec4f9fed4990085e3cd8)

1 / 68      (PUP)
hevp.exe  (fc6027eddbf9dfcba1bc407c873f71c0)

9 / 68      (PUP)
install.exe  (d05515c4ad6f4694b42b3f347cc9cc2e)

12 / 68    (PUP)
works.exe  (276c744058d07f1699ac7956d22d57bc)

1 / 68      (PUP)
pure.exe  (b1c0889b56a297ac9c9a9366a6dfce07)

6 / 68      (Malware)
sonny.exe  (d53e17ad8855491d8ba4d15d50d4290c)

 
Latest 30 of 35 files

Downloads URLs for files signed by UNINFO SISTEMAS LTDA ME.

10 / 68    (Malware)
https://www.sugarsync.com/.../D3150813_164_994789491?directDownload=true  (install.exe)

9 / 68      (PUP)
https://www.sugarsync.com/.../D3165219_035_862326833?directDownload=true  (install.exe)

The following websites host and distribute files published by UNINFO SISTEMAS LTDA ME.

www.sugarsync.com

The certificates below are also signed by UNINFO SISTEMAS LTDA ME.

0A436E0F5116A91FE0FAB0A32CF0BBAB  (Oct 18, 2015 to Sep 24, 2016)

0BDA51D61C80F17A49E30410A43ACF35  (Dec 07, 2015 to Sep 24, 2016)

1589BE25AFF5B96565F47E6E2E584A90  (Sep 24, 2015 to Sep 24, 2016)

370C2467C41D6019BBECD72E00C5D73D  (Oct 07, 2015 to Sep 24, 2016)

4CF94AF50EACBC78CB7A591A27299620  (Nov 15, 2015 to Sep 24, 2016)

4D01ECD3DC384BF4DD9764FAD90962A1  (Nov 13, 2015 to Sep 24, 2016)

6A3A00858439973F6F32F3B1CBEB4630  (Sep 27, 2015 to Sep 24, 2016)

7FB751B2962D91A327F377C2FF415F1A  (Nov 28, 2015 to Sep 24, 2016)

The following publishers (by Authenticode signature organization name) are related.

SugarSync, Inc.

Guangzhou Tieren Network Technology Co.,Ltd.

The Excellence Life Insurance Company

NSA

PasteBIN

github

Apple INC

INDUSTRIELLE ALLIANCE ASSURANCE ET SERVICES FINANCIERS INC.

think-cell Software GmbH

SAPO

Novinsoft, Inc.

* Note, the details and description above are based on the code signing digital signature issued to UNINFO SISTEMAS LTDA ME by thawte, Inc. on November 08, 2015 with the serial number '355dd32e9a65da38442099f9bec250eb'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.