SpeedCheckerService.exe

SpeedCheckerService

Optimal Software s.r.o.

The application SpeedCheckerService.exe by Optimal Software s.r.o has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It runs as a separate (within the context of its own process) windows Service named “SpeedChecker Service”. This file is typically installed with the program SpeedChecker Service by Optimal Software s.r.o..
Publisher:
Optimal Software s.r.o.  (signed and verified)

Product:
SpeedCheckerService

Version:
1.0.40.0

MD5:
b43ebc3c522af4f7982938527d996185

SHA-1:
ac58f87cf3e0edf820bb9ec963cd9b3bfd713466

SHA-256:
5ad37d9644024be58c56a2582790d4579528257f801156a3752dd3ac8840b4c8

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/26/2024 2:37:43 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Speedchecker (L)
16.10.25.7

File size:
77.7 KB (79,520 bytes)

Product version:
1.0.40.0

Copyright:
Copyright © 2016

Original file name:
SpeedCheckerService.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\speedchecker\speedcheckerservice.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
10/5/2016 5:30:00 AM

Valid to:
9/20/2017 5:29:59 AM

Subject:
CN=Optimal Software s.r.o., O=Optimal Software s.r.o., STREET=Jablunkovska 2014/40a, L=Cesky Tesin, S=Cesky Tesin, PostalCode=73701, C=CZ

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
1FA0D67D60CA1E747E6FBD496E484B0D

File PE Metadata
Compilation timestamp:
10/24/2016 4:29:41 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1536:xWfQ0za3hRFWFBU28xOhL8WpJswXrN+ribdml2L8OPxiq:xWY0zwfABUHi4WpJswXrN+mbdml2L8Ot

Entry address:
0x12D7E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.9272

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
67.5 KB (69,120 bytes)

Service
Display name:
SpeedChecker Service

Service name:
SCService

Description:
Measures internet speed

Type:
Win32OwnProcess


The file SpeedCheckerService.exe has been discovered within the following program.

SpeedChecker Service  by Optimal Software s.r.o.
About 1% of users remove it
 
Powered by Should I Remove It?

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP SSL):
Connects to ec2-54-77-38-116.eu-west-1.compute.amazonaws.com  (54.77.38.116:443)

TCP (HTTP SSL):
Connects to ec2-52-208-6-155.eu-west-1.compute.amazonaws.com  (52.208.6.155:443)

Remove SpeedCheckerService.exe - Powered by Reason Core Security