smartwebinstallerhelperdll.dll

SmartWeb

SoftBrain Technologies Ltd.

The module smartwebinstallerhelperdll.dll by SoftBrain Technologies has been detected as a potentially unwanted program by 11 anti-malware scanners. This particular feature is designed to hijack the browser in an attempt to prevent other resources from modify the browser's search and home pages. It is also typically executed from the user's temporary directory.
Publisher:
SoftBrain Technologies Ltd.  (signed and verified)

Product:
SmartWeb

Description:
Installer Helper

Version:
8.0.8.1

MD5:
c57bc37a474a9e92a32d59d1bbd90849

SHA-1:
9fcc0b2e66d4e47a8b88770ace29c4fdb413774e

SHA-256:
7c3cb2ddc150bec34a780aa1af1f89298aa8d02cdee98359b4271e133b7b826f

Scanner detections:
11 / 68

Status:
Potentially unwanted

Explanation:
Displays offers (for product and services) of certain deals related to the search terms or context of a webpage which are popups outside the normal browser content.

Analysis date:
12/24/2024 3:26:31 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Application.SearchProtect.BE
658

Baidu Antivirus
PUA.Win32.PriceGong
4.0.3.15417

Bitdefender
Application.SearchProtect.BE
1.0.20.535

ESET NOD32
Win32/PriceGong.C potentially unwanted (variant)
9.11164

Fortinet FortiGate
Riskware/PriceGong
4/17/2015

F-Secure
Application.SearchProtect.BE
11.2015-17-04_6

G Data
Application.SearchProtect.BE
15.4.25

Malwarebytes
PUP.Optional.SmartWeb.A
v2015.04.17.11

MicroWorld eScan
Application.SearchProtect.BE
16.0.0.321

Reason Heuristics
PUP.Installer.SoftBrainTechnologies
15.4.24.0

Trend Micro House Call
Suspicious_GEN.F47V0205
7.2.107

File size:
209.5 KB (214,560 bytes)

Product version:
8.0.8.1

Copyright:
SoftBrain Technologies Ltd. Copyright (C) 2014

Original file name:
SmartWeb.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\smartwebinstallerhelperdll.dll

Digital Signature
Authority:
Symantec Corporation

Valid from:
1/12/2015 6:00:00 PM

Valid to:
3/13/2016 6:59:59 PM

Subject:
CN=SoftBrain Technologies Ltd., O=SoftBrain Technologies Ltd., L=Or Yehuda, S=Israel, C=IL

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
0E056BE2C82AF2FAD3F0D3BD43387AB2

File PE Metadata
Compilation timestamp:
2/4/2015 7:44:05 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
6144:/FuxIfllsdXoPC73V/mZOE7EatUAgbyqa:TsdYPC73VOZ9NEbyqa

Entry address:
0x11328

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 56, 7B, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, 70, D4, 02, 10, E8, 09, 37, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, 34, 19, 03, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, 98, 53, 02, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4...
 
[+]

Entropy:
6.5162

Developed / compiled with:
Microsoft Visual C++

Code size:
136 KB (139,264 bytes)

Remove smartwebinstallerhelperdll.dll - Powered by Reason Core Security