supremesavingsremovaltool.exe

Security Stronghold LLC

The application supremesavingsremovaltool.exe by Security Stronghold has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. Additionally, the file is typically installed by a number of programs including Get Savin Removal Tool by Security Stronghold and Shopping Sidekick Removal Tool by Security Stronghold.
Publisher:
Security Stronghold  (signed by Security Stronghold LLC)

Version:
1.0.0.100

MD5:
675ffbd2d9fbe4b07de69c24d25518b9

SHA-1:
efd90cd18f124656306f277fbcb180ddacc468e0

SHA-256:
bf6672e23cc20a4dd1ce895877e860feb3e61c9a95f8f1e39d7f7e560eccb7b5

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/5/2024 9:37:24 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
16.6.22.3

File size:
4.8 MB (5,069,240 bytes)

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\supreme savings removal tool\supremesavingsremovaltool.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
8/16/2012 10:41:30 AM

Valid to:
11/10/2013 11:49:56 AM

Subject:
E=manager@securitystronghold.com, CN=Security Stronghold LLC, O=Security Stronghold LLC, L=Astrakhan, S=Astrakhan region, C=RU

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121A8E6D4E8876A9E02DB5215F60B91C5F5

File PE Metadata
Compilation timestamp:
4/11/2013 12:34:33 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:vejU+/UzggkOhwSAuHL5xgsRYnSH5L/ZZHwToGDPNiry+OBj/pdR2mEUsayeTMVt:kX8xrnHXG7EOBjBdR9EUS5ZYHK

Entry address:
0x3A3BC0

Entry point:
55, 8B, EC, B9, 0A, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 51, 53, 56, B8, BC, 3A, 79, 00, E8, 98, 81, C6, FF, 8B, 35, 24, 22, 80, 00, 33, C0, 55, 68, D6, 3D, 7A, 00, 64, FF, 30, 64, 89, 20, 8D, 55, E4, 33, C0, E8, 72, 0F, C6, FF, 8B, 45, E4, 8D, 55, E8, E8, 67, FB, C7, FF, 8B, 45, E8, 8D, 4D, EC, 33, D2, E8, 66, F9, C7, FF, 8B, 55, EC, 8B, C6, E8, E0, 40, C6, FF, BB, 02, 00, 00, 00, 8D, 45, DC, 8B, 16, 0F, B7, 54, 5A, FC, E8, B0, 4B, C6, FF, 8B, 45, DC, 8D, 55, E0, E8, BD, DB, C7, FF, 8B, 45, E0, 50, 8D...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
3.6 MB (3,810,816 bytes)

The file supremesavingsremovaltool.exe has been discovered within the following programs.

Babylon Translator Removal Tool  by Security Stronghold
During installation, the Security Stronghold Removal Tool utility will provide various bundled applications including RegClean Pro registry cleaner. It will then download utilities from its server and scan the user's PC.
www.SecurityStronghold.com
75% remove it
Browse To Save Removal Tool  by Security Stronghold
Publisher's description - “Fast, easy, and handy, Browse To Save Removal Tool protects your computer against Browse To Save that does harm to your computer and breaks your privacy. Browse To Save Removal Tool scans your hard disks and registry and destroys any manifestation of Browse To Save.”
56% remove it
Deal Boat Removal Tool  by Security Stronghold
55% remove it
Delta Search Toolbar Removal Tool  by Security Stronghold
82% remove it
Get Savin Removal Tool  by Security Stronghold
59% remove it
Shopping Sidekick Removal Tool  by Security Stronghold
Publisher's description - “Shopping Sidekick copies its file(s) to your hard disk. Its typical file name is ShoppingSidekick.exe. Then it creates new startup key with name Shopping Sidekick and value ShoppingSidekick.exe. You can also find it in your processes list with name ShoppingSidekick.”
63% remove it
Supreme Savings Removal Tool  by Security Stronghold
61% remove it
Tuvaro Toolbar Removal Tool  by Security Stronghold
60% remove it
 
Powered by Should I Remove It?

Remove supremesavingsremovaltool.exe - Powered by Reason Core Security