ssinstall.dll

AVSoftware EOOD

The module ssinstall.dll by AVSoftware EOOD has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
AVSoftware EOOD  (signed and verified)

MD5:
3cbf73622deecf3aa3f70c6b3252334e

SHA-1:
1cd39be910f4106ea4e6b9478e94d11f22810e2a

SHA-256:
d597a6e56e72e6194effd8f70222aa98db83564de73f9eed2bc96dcfa90d7ced

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/23/2024 4:25:30 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.SafeSearch (M)
16.8.8.4

File size:
1.8 MB (1,870,568 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\safesearch\1_14\ssinstall.dll

Digital Signature
Signed by:

Authority:
Symantec Corporation

Valid from:
12/31/2015 12:00:00 AM

Valid to:
6/4/2016 12:59:59 AM

Subject:
CN=AVSoftware EOOD, O=AVSoftware EOOD, L=Sofia, S=Sofia, C=BG

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
57ABCD2BCF9FD1CFD5A1BABF2579820E

File PE Metadata
Compilation timestamp:
4/13/2016 5:03:13 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:WmQq8GoBhbuZPKTDya7wmAxF7/BuSIlEKV7b1RplXWqhQZmBEa9zMinAaR3O1:Tn5L2DyZmAbgSQViIXAatK

Entry address:
0x18971C

Entry point:
55, 8B, EC, 83, C4, C0, B8, F4, FE, 57, 00, E8, D0, 1C, E8, FF, E8, FF, CE, E7, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.5221

Developed / compiled with:
Microsoft Visual C++

Code size:
1.5 MB (1,606,144 bytes)

Remove ssinstall.dll - Powered by Reason Core Security