solutionreal.ffupdate.dll

Rad Raven

FFUpdate is the Mozilla Firefox plugin manager for the Rad Raven branded Yontoo adware browser platform. The component is designed to install and keep Firefox connected to the adware updater. The module solutionreal.ffupdate.dll by Rad Raven has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Rad Raven  (signed and verified)

Version:
1.0.5706.25765

MD5:
01e359b4b1718454dfbb7c749796cff1

SHA-1:
c366ab88cee017fcca09e125b740ec26069f5f9a

SHA-256:
7f70c9d810b5b61473ce49685361784114c20a55df401b0a95a0ca7367584668

Scanner detections:
1 / 68

Status:
Adware

Explanation:
Part of the Yontoo distributed ad-supported web browser plugin for Firefox.

Analysis date:
11/27/2024 2:12:48 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Yontoo (M)
17.3.14.15

File size:
520.2 KB (532,720 bytes)

Product version:
1.0.5706.25765

Original file name:
2015081622.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\Program Files\solution real\bin\plugins\solutionreal.ffupdate.dll

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
10/14/2014 8:45:00 AM

Valid to:
10/15/2015 8:44:59 AM

Subject:
CN=Rad Raven, O=Rad Raven, L=Santa Monica, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0B7DB63EF6FF035D8353EEF132DC2226

File PE Metadata
Compilation timestamp:
8/17/2015 7:03:50 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
11.0

.NET CLR dependent:
Yes

Entry address:
0x81E3E

Entry point:
FF, 25, 00, 20, 00, 10, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
512 KB (524,288 bytes)

Remove solutionreal.ffupdate.dll - Powered by Reason Core Security