» uncheckit.exe
Overview
Analysis
File Details

uncheckit.exe

EVANGEL TECHNOLOGY(HK) LIMITED

The application uncheckit.exe by EVANGEL TECHNOLOGY(HK) LIMITED has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.

File name:

uncheckit.exe

Publisher:

EVANGEL TECHNOLOGY(HK) LIMITED (signed and verified)

MD5:

694ffad07a39f0393801504fb7028961

SHA-1:

e6a9d06684778b6a7ae74443ccc5273ef4bcffb4

SHA-256:

31a83a8966529c96bb4bd09172857c9e295681dee71b36888006377a33201b0a

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

11/25/2024 3:26:57 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Evangel.Uncheckit (M)

16.8.6.14

File size:

275.3 KB (281,888 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\uncheckit\uncheckit.exe

Digital Signature

Signed by:

EVANGEL TECHNOLOGY(HK) LIMITED

Authority:

GlobalSign nv-sa

Valid from:

5/25/2016 11:55:28 PM

Valid to:

11/26/2016 7:27:12 AM

Subject:

CN=EVANGEL TECHNOLOGY(HK) LIMITED, O=EVANGEL TECHNOLOGY(HK) LIMITED, L=香港, S=香港, C=HK

Issuer:

CN=GlobalSign CodeSigning CA - G3, O=GlobalSign nv-sa, C=BE

Serial number:

22FC6747FE48DAD5429960C1

File PE Metadata

Compilation timestamp:

5/26/2016 7:09:10 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

6144:SycUosgEsf9OxcjNHB4VYtMGcK3uAlBoZNNx99rRDMk3cofj69D:SyRosNWNbtMHNND9rRYYj69D

Entry address:

0x1D8F6

Entry point:

02, 00, 22, 23, 10, 15, 25, 02, 21, 11, 26, 00, 2B, 35, 01, 2B, 35, 00, FF, FF, 00, 4A, FF, E7, 04, A8, 07, 64, 02, 26, 00, 26, 00, 00, 01, 07, 00, D7, 01, 99, 01, 7D, 00, 13, 40, 0B, 01, A6, 1A, 16, 05, 15, 25, 01, 1A, 05, 26, 00, 2B, 35, 01, 2B, 35, 00, FF, FF, 00, 48, FF, E7, 03, B9, 05, E7, 02, 26, 00, 46, 00, 00, 01, 07, 00, D7, 00, CB, 00, 00, 00, 13, 40, 0B, 01, 67, 1A, 16, 05, 15, 25, 01, 1A, 11, 26, 00, 2B, 35, 01, 2B, 35, 00, FF, FF, 00, 4A, FF, E7, 04, A8, 07, 2F, 02, 26, 00, 26, 00, 00, 01, 07... 
[+]

Code size:

132 KB (135,168 bytes)

Remove uncheckit.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.