tmp-drivermax15916739.exe

DriverMax

Innovative Solutions Grup SRL

The application tmp-drivermax15916739.exe, “DriverMax Setup ” by Innovative Solutions Grup SRL has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from www.softonic.com.br and multiple other hosts.
Publisher:
Innovative Solutions   (signed by Innovative Solutions Grup SRL)

Product:
DriverMax

Description:
DriverMax Setup

MD5:
8d619c3adbd44e78db5fadb379de60da

SHA-1:
2e798bc9d8620e02b0127c8b6822394581cb82eb

SHA-256:
4c68849726155b6dce84a4550492658fd05d721d4d1dab347c93f6201329198c

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/5/2024 11:25:24 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.DriverMax.Innovati.Installer.Meta (L)
16.6.16.18

File size:
5.4 MB (5,616,144 bytes)

Product version:
8.19.0.431

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Common path:
C:\users\{user}\appdata\local\temp\tmp-drivermax15916739.exe

Digital Signature
Authority:
Symantec Corporation

Valid from:
3/19/2015 1:00:00 AM

Valid to:
5/18/2016 1:59:59 AM

Subject:
CN=Innovative Solutions Grup SRL, O=Innovative Solutions Grup SRL, L=Bucharest, S=Bucharest, C=RO

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
6CCC9ABD5046DE5246F5CD620FC3DEBB

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:JJBtisLgBXPFHVTi3oIT02zfHbb00uCRyV0uQEr9AXcx4UdGO02qGWw:jissw4WVNyV0uQ8tRd102tWw

Entry address:
0xA5F8

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, CE, 8A, FF, FF, E8, D5, 9C, FF, FF, E8, 64, 9F, FF, FF, E8, 07, A0, FF, FF, E8, A6, BF, FF, FF, E8, 11, E9, FF, FF, E8, 78, EA, FF, FF, 33, C0, 55, 68, C9, AC, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 92, AC, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, B2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, C4, 97, FF, FF, 8D, 55, F0, 33, C0, E8, B6, C5, FF, FF, 8B, 55...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
39.5 KB (40,448 bytes)

The file tmp-drivermax15916739.exe has been seen being distributed by the following 33 URLs.

http://www.softonic.com.br/sads/tracker.php?ev=c&co=PT&sid=98cf2471978c1d0b1e0c519f0cea1e37&upv=a2fc411e191d6e56e27783c80c263726&z=download-cpd&sk=1650&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBAB9D0A325A0C66CC51714148938FC8A64E16CCEC8B21B2D40363C77D42C03A738F5773AE86EAF882E96966B3ADBE4E7A6DCFB1582AE510B5A5087DB20F297CF68AA3AE4B90A18AA0EEF43D90D87D82A758C5B20B758E54023785801FCB87A1618667D31A7BA044A14F4EBBC7F09CC1340DD22E08C86D58AED579C5713F2B94AC6EB7989AA972C0CDB8251C480A2FDE150&h=D8DB04C81CA0C6078271C1A915DDB95A3D04F270582CE64AD6F5BAD191047AA6&directdownload=1&f=55238&d=http://www.innofiles.com/soft/.../drivermax.exe

http://lb.cdn.m6web.fr/d/c/a/56536a4d492f035844a8f60416e6b71a/573c4a15/soft/.../drivermax_8-19_en_27720.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=MX&sid=6c0e152ff4f9ef96559e9a612d3400d2&upv=cd9ef783362401687d9dd37cf1fdc512&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA81C42AA7B2AB56E85BF65B1AFD3DBC46443DC8D945CB35570014CA05C7E4B88437973F342687731340576C4E2D7154B1F82EE78343F86047C69B212ED5BA8DF6CAE56376522303C1774E5B87A011E256342B0A09862246D9C9308F57A3CB3A08D724A406C98573CD307AC0F936092A00CC470425ABE916F74D3816411ABACD27955E849A9FC17B11E97A725798CCDE7A&h=F6D8BAC8D1D5E5AC0CABEA956218FBBF89CC47B30B176FB51E92BD5E3A57BA05&directdownload=1&f=55238&d=http://www.innofiles.com/soft/.../drivermax.exe

http://drivermax.softonic.com.br/download

http://www.softonic.com/sads/tracker.php?ev=c&co=CO&sid=ebb875f69bf3e38987fcc9fdd5c60872&upv=074ffd03c245989b2676b8118844b712&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA81C42AA7B2AB56E85BF65B1AFD3DBC46443DC8D945CB35570014CA05C7E4B88441D2064A37958843E5605E0454F6462673964A961AC18511FA354B0698264576BA32AA8E9F3D554CF7998F0F999F37B7362070CD4E322F1E3E7C05C3533DA35DDF85A17737825D7BA344920D0A2226A8BEC911B48A9F4F574BD33777ED09ADA02BD7B8E47021EB332D0F72DEE2417235&h=EA7EC11EE7FDDD9A27A8ABC890A94B65AE913506295692AF6DC10F71C884DDA7&directdownload=1&f=55238&d=http://www.innofiles.com/soft/.../drivermax.exe

http://www.softonic.com/sads/tracker.php?ev=c&co=CL&sid=ecc9c4d5df37d205cb6b00ab6708831a&upv=1368cb4ca70ca20819911680f9fb9932&z=results&sk=0&abp=0&params=F24F8F4D368AFA5D32C8A90D9EFD1CBA81C42AA7B2AB56E85BF65B1AFD3DBC46443DC8D945CB35570014CA05C7E4B88437973F342687731340576C4E2D7154B1007F564669C49836D854298C9B0CFE0980587D9FA837F9F6F8242F5DD133036917B965B3C8711498FC0E7F2EC5C5CD28716C8AE629CE24DD780977F922986B88130621C3A1C8ABF7ACB9FB00DD74A60A559014C951283C7642EFA02948D95FE9&h=9B148B7A9E8631FCF5BCC95E6E8B16EC4B884362051A91A6D371857C887815C8&directdownload=1&f=55238&d=http://www.innofiles.com/soft/.../drivermax.exe

Latest 30 of 33 download URLs

Remove tmp-drivermax15916739.exe - Powered by Reason Core Security