SystemUtilitiesSetup_SystemUtils_org.exe

Free System Utilities

Freemium GmbH

The application SystemUtilitiesSetup_SystemUtils_org.exe by Freemium GmbH has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the Covus installer. This is the uninstaller utility registered in the Windows Control Panel for the program Free System Utilities by Covus Freemium GmbH. This file is typically installed with the program Free System Utilities by Covus Freemium GmbH.
Publisher:
Covus Freemium GmbH  (signed by Freemium GmbH)

Product:
Free System Utilities

Version:
1.0.0.0

MD5:
3429ba40bbba2396c7d7fe2f9a64f428

SHA-1:
776cf9565837b670456aff2a5e8d3cc44385cd4b

SHA-256:
ed247eabead67374addfa3502c2f56bdaa629c093515807194503fbbf917ce05

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Description:
This is an installer which may bundle legitimate applications with offers for additional 3rd-party applications that may be unwanted by the user. While the installer contains an 'opt-out' feature this is not set be defult and is usually overlooked.

Analysis date:
11/30/2024 9:08:47 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Covus.Freemium.Bundler (M)
16.4.24.8

File size:
422 KB (432,152 bytes)

Product version:
1.0.0.0

Copyright:
Copyright (c) Covus Freemium GmbH. All rights reserved.

Original file name:
SystemUtilitiesSetup_SystemUtils_org.exe

File type:
Executable application (Win32 EXE)

Bundler/Installer:
Covus

Language:
English (United States)

Common path:
C:\ProgramData\package cache\{a98e6eb1-64de-4b36-a1a9-97e0b92fdceb}\systemutilitiessetup_systemutils_org.exe

Digital Signature
Signed by:

Authority:
GlobalSign nv-sa

Valid from:
2/13/2012 9:34:07 AM

Valid to:
2/13/2013 9:34:07 AM

Subject:
CN=Freemium GmbH, O=Freemium GmbH, L=Berlin, S=Berlin, C=DE

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121252CF10F5361359FEF99CB5B54F17E94

File PE Metadata
Compilation timestamp:
9/3/2012 2:44:40 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:YKbe2meV3IipMkHmCoj86wTBsLQ5qDtpjNQVY:mlE3FHmfgJsLKqnj6K

Entry address:
0x474B

Entry point:
E8, AC, 14, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, 8B, 00, 81, 38, 63, 73, 6D, E0, 75, 2A, 83, 78, 10, 03, 75, 24, 8B, 40, 14, 3D, 20, 05, 93, 19, 74, 15, 3D, 21, 05, 93, 19, 74, 0E, 3D, 22, 05, 93, 19, 74, 07, 3D, 00, 40, 99, 01, 75, 05, E8, 01, 15, 00, 00, 33, C0, 5D, C2, 04, 00, 68, 55, 47, 40, 00, FF, 15, 7C, 11, 40, 00, 33, C0, C3, 8B, FF, 55, 8B, EC, 57, BF, E8, 03, 00, 00, 57, FF, 15, 84, 11, 40, 00, FF, 75, 08, FF, 15, 80, 11, 40, 00, 81, C7, E8, 03, 00, 00, 81, FF, 60, EA, 00...
 
[+]

Code size:
311.5 KB (318,976 bytes)

Program Uninstaller
Program name:
Free System Utilities

Display publisher:
Covus Freemium GmbH

Display version:
1.0.0.0

Uninstall string:
"C:\ProgramData\Package Cache\{a98e6eb1-64de-4b36-a1a9-97e0b92fdceb}\SystemUtilitiesSetup_SystemUtils_org.exe" /uninstall


The file SystemUtilitiesSetup_SystemUtils_org.exe has been discovered within the following program.

Free System Utilities  by Covus Freemium GmbH
"When you use the software offered to download on www.freemium.com and www.freemium.
freemium.com/free-system-utilities
54% remove it
 
Powered by Should I Remove It?

Remove SystemUtilitiesSetup_SystemUtils_org.exe - Powered by Reason Core Security