home

SmileFiles.exe

SmileFiles Installer

Webitar Production Inc

The file SmileFiles.exe by Webitar Production Inc has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is also typically executed from the user's temporary directory.
Publisher:
http://smile-files.com  (signed by Webitar Production Inc)

Product:
SmileFiles Installer

Version:
1, 0, 510, 1

MD5:
8d8b38d603a0098b626e48a42045fafd

SHA-1:
b87022d32b786e89f6d0c36e87edcb72b60de687

SHA-256:
9693c10c3a39796d12ab33a8895a35ccb2c9c669712ac9a01e9718845f8d9d6b

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/14/2024 3:14:23 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.2.28.12

File size:
3.2 MB (3,337,976 bytes)

Product version:
1.0.0.1

Copyright:
Copyright http://smile-files.com (C) 2014

Original file name:
SmileFiles.exe

Language:
English

Common path:
C:\users\{user}\appdata\local\temp\fltf4d6.tmp

Digital Signature
Signed by:
Webitar Production Inc

Authority:
DigiCert Inc

Valid from:
11/10/2014 5:00:00 PM

Valid to:
11/15/2017 5:00:00 AM

Subject:
CN=Webitar Production Inc, O=Webitar Production Inc, L=Mahe, C=SC

Issuer:
CN=DigiCert SHA2 Assured ID Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0F9F8704E151CAFCFEFEECFBBA733C63

File PE Metadata
Compilation timestamp:
1/23/2015 3:56:09 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

Entry address:
0x471650

Entry point:
60, C7, 44, 24, 1C, 6C, 05, 01, 5E, 68, F0, 9F, 52, ED, 9C, C7, 44, 24, 20, 5E, 96, B8, 42, 89, 5C, 24, 08, 60, C6, 04, 24, B3, 66, C7, 44, 24, 04, 87, E2, 8D, 64, 24, 40, E9, 45, 20, 00, 00, D5, BF, 5B, BA, B5, A7, 16, 51, CE, 83, 0A, 28, C6, AF, 74, 54, DA, 24, 69, 9B, 62, E7, 94, 87, F8, D4, D9, BF, C9, EF, 43, 55, F1, A4, 17, 1A, CB, CC, 29, D7, 56, 52, B7, DD, A6, 84, 8C, B4, 7D, D7, 7C, 21, 14, BD, C8, 1C, 4B, DB, F3, A9, EA, 52, D3, 3E, A3, F2, F9, 15, 91, A3, B2, 74, D1, 46, BC, 38, 41, 5C, 1F, 74...
 
[+]

Entropy:
7.9937  (probably packed)

Code size:
932 KB (954,368 bytes)

Remove SmileFiles.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.