tmp000000026f658ed54b1c1f0b

Verti Technology Group, Inc.

This is part of the Verti bundle installer which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed with minimal consent. The file tmp000000026f658ed54b1c1f0b by Verti Technology Group has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Verti Technology Group, Inc.  (signed and verified)

Version:
1.0.115.0

MD5:
d95383763cd28eaca4da8f5c87ae41e1

SHA-1:
36e479e7195320c6f9cd4bf1f1df84785679d0ec

SHA-256:
4929fea08aeea9cef9728d7756ebb567fe2ea32b77620a432da0e4a26ca11e1d

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
12/24/2024 1:05:23 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Verti
17.2.24.9

File size:
512 KB (524,288 bytes)

Product version:
1.0.115.0

Language:
English (United States)

Common path:
C:\windows\temp\tmp000000026f658ed54b1c1f0b

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
11/13/2011 7:00:00 PM

Valid to:
11/13/2013 6:59:59 PM

Subject:
CN="Verti Technology Group, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Verti Technology Group, Inc.", L=Bellevue, S=Washington, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5E5A8F44B995DF01701554FBF18173B7

File PE Metadata
Compilation timestamp:
12/7/2012 2:51:38 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

Entry address:
0x24688

Entry point:
E8, F8, 90, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, 33, C9, 3B, 04, CD, A8, A0, 44, 00, 74, 13, 41, 83, F9, 2D, 72, F1, 8D, 48, ED, 83, F9, 11, 77, 0E, 6A, 0D, 58, 5D, C3, 8B, 04, CD, AC, A0, 44, 00, 5D, C3, 05, 44, FF, FF, FF, 6A, 0E, 59, 3B, C8, 1B, C0, 23, C1, 83, C0, 08, 5D, C3, E8, E6, 10, 00, 00, 85, C0, 75, 06, B8, 10, A2, 44, 00, C3, 83, C0, 08, C3, E8, D3, 10, 00, 00, 85, C0, 75, 06, B8, 14, A2, 44, 00, C3, 83, C0, 0C, C3, 8B, FF, 55, 8B, EC, 56, E8, E2, FF, FF, FF, 8B, 4D, 08...
 
[+]

Entropy:
6.7745

Code size:
211 KB (216,064 bytes)

Remove tmp000000026f658ed54b1c1f0b - Powered by Reason Core Security