TLCPCBoosterSetup.exe

TLC PC Booster

Saburi Global Services Pvt. Ltd.

The application TLCPCBoosterSetup.exe, “This installer database contains the logic and data required to install TLC PC Booster.” by Saburi Global Services Pvt has been detected as a potentially unwanted program by 6 anti-malware scanners. This is a setup and installation application and has been known to bundle potentially unwanted software. The file has been seen being downloaded from www.tlcpcbooster.com.
Publisher:
Saburi Global Services Pvt. Ltd.  (signed and verified)

Product:
TLC PC Booster

Description:
This installer database contains the logic and data required to install TLC PC Booster.

Version:
2.5.9

MD5:
17472e4cec6bff798f6568d123851907

SHA-1:
7c0e676297282f9381ff664eec012a2edf21a2b8

SHA-256:
00e92ed590892408b69827a94d32f05d0fabb0aa786e8bbdeffbaf5915f551d8

Scanner detections:
6 / 68

Status:
Potentially unwanted

Analysis date:
11/25/2024 2:05:21 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
MSIL/Rebrand.LittleRegClean.B potentially unwanted (variant)
9.11451

IKARUS anti.virus
Trojan.SuspectCRC
t3scan.1.8.9.0

K7 AntiVirus
Trojan
13.202.15544

McAfee
Artemis!17472E4CEC6B
5600.6798

VIPRE Antivirus
Trojan.Win32.Generic
39202

Zillya! Antivirus
Trojan.DoctorAntivirus.Win32.8
2.0.0.2134

File size:
5.7 MB (6,012,344 bytes)

Product version:
2.5.9

Copyright:
Copyright (C) 2014 Saburi Global Services Pvt. Ltd.

Original file name:
TLCPCBoosterSetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\tlcpcboostersetup.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
2/13/2014 6:00:00 PM

Valid to:
2/14/2015 5:59:59 PM

Subject:
CN=Saburi Global Services Pvt. Ltd., OU="TG-3/1-A,", O=Saburi Global Services Pvt. Ltd., STREET=Orchid Gardens Sun City, L=Gurgaon, S=Haryana, PostalCode=122002, C=IN

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00DA3F1310450FF785C178A3632B49BAB4

File PE Metadata
Compilation timestamp:
10/7/2014 10:05:58 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
98304:nG7cl1155MF193Z5Mdctxoz9speD8xTGqUth99MkiCZEHWP:CuQt5MdIxP4YOT99M6jP

Entry address:
0xC87EC

Entry point:
E8, 4A, CC, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 51, 53, 56, 8B, F0, 33, DB, 3B, F3, 75, 1E, E8, 5D, 4D, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, C5, D5, FF, FF, 83, C4, 14, 8B, C6, E9, C2, 00, 00, 00, 57, 39, 5D, 0C, 77, 1E, E8, 39, 4D, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, A1, D5, FF, FF, 83, C4, 14, 8B, C6, E9, 9D, 00, 00, 00, 33, C0, 39, 5D, 14, 66, 89, 06, 0F, 95, C0, 40, 39, 45, 0C, 77, 09, E8, 0A, 4D, 00, 00, 6A, 22, EB, CF, 8B, 45, 10, 83, C0, FE, 83, F8, 22, 77...
 
[+]

Entropy:
7.6599

Code size:
1021.5 KB (1,046,016 bytes)

The file TLCPCBoosterSetup.exe has been seen being distributed by the following URL.

Remove TLCPCBoosterSetup.exe - Powered by Reason Core Security