uncheckit.exe

EVANGEL TECHNOLOGY(HK) LIMITED

The application uncheckit.exe by EVANGEL TECHNOLOGY(HK) LIMITED has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
EVANGEL TECHNOLOGY(HK) LIMITED  (signed and verified)

MD5:
694ffad07a39f0393801504fb7028961

SHA-1:
e6a9d06684778b6a7ae74443ccc5273ef4bcffb4

SHA-256:
31a83a8966529c96bb4bd09172857c9e295681dee71b36888006377a33201b0a

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/28/2024 10:59:31 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Evangel.Uncheckit (M)
16.8.6.14

File size:
275.3 KB (281,888 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\uncheckit\uncheckit.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
5/25/2016 11:55:28 PM

Valid to:
11/26/2016 7:27:12 AM

Subject:
CN=EVANGEL TECHNOLOGY(HK) LIMITED, O=EVANGEL TECHNOLOGY(HK) LIMITED, L=香港, S=香港, C=HK

Issuer:
CN=GlobalSign CodeSigning CA - G3, O=GlobalSign nv-sa, C=BE

Serial number:
22FC6747FE48DAD5429960C1

File PE Metadata
Compilation timestamp:
5/26/2016 7:09:10 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
6144:SycUosgEsf9OxcjNHB4VYtMGcK3uAlBoZNNx99rRDMk3cofj69D:SyRosNWNbtMHNND9rRYYj69D

Entry address:
0x1D8F6

Entry point:
02, 00, 22, 23, 10, 15, 25, 02, 21, 11, 26, 00, 2B, 35, 01, 2B, 35, 00, FF, FF, 00, 4A, FF, E7, 04, A8, 07, 64, 02, 26, 00, 26, 00, 00, 01, 07, 00, D7, 01, 99, 01, 7D, 00, 13, 40, 0B, 01, A6, 1A, 16, 05, 15, 25, 01, 1A, 05, 26, 00, 2B, 35, 01, 2B, 35, 00, FF, FF, 00, 48, FF, E7, 03, B9, 05, E7, 02, 26, 00, 46, 00, 00, 01, 07, 00, D7, 00, CB, 00, 00, 00, 13, 40, 0B, 01, 67, 1A, 16, 05, 15, 25, 01, 1A, 11, 26, 00, 2B, 35, 01, 2B, 35, 00, FF, FF, 00, 4A, FF, E7, 04, A8, 07, 2F, 02, 26, 00, 26, 00, 00, 01, 07...
 
[+]

Code size:
132 KB (135,168 bytes)

Remove uncheckit.exe - Powered by Reason Core Security