uninstall.exe

360Amigo System SpeedUp

Business Bakers

The application uninstall.exe, “360Amigo System SpeedUp Installor” by Business Bakers has been detected as a potentially unwanted program by 2 anti-malware scanners. This is a setup and installation application and has been known to bundle potentially unwanted software. This is the uninstaller utility registered in the Windows Control Panel for the program 360Amigo System Speedup Free by 360Amigo System SpeedUp. The file has been seen being downloaded from software-files-a.cnet.com.
Publisher:
360Amigo  (signed by Business Bakers)

Product:
360Amigo System SpeedUp

Description:
360Amigo System SpeedUp Installor

Version:
1.2.1.8000

MD5:
e8095df7969fb776310aa7761a34467b

SHA-1:
0126de16b17ee8a0745461203eb41ebed9063dd2

SHA-256:
17ac8d4c72fc06bc12b3be38112605b047b41b5e0d4344bab3eadf82d544f2ab

Scanner detections:
2 / 68

Status:
Potentially unwanted

Analysis date:
12/25/2024 6:43:52 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/360Amigo (variant)
8.9477

Reason Heuristics
PUP.Optional.Installer.BusinessBakers.J
14.2.28.4

File size:
3.1 MB (3,288,352 bytes)

Product version:
1.2.1

Copyright:
Copyright 2012 by 360Amigo

Trademarks:
360Amigo

Original file name:
Setup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United Kingdom)

Common path:
C:\Program Files\360amigo\uninstall.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
8/16/2011 7:00:00 PM

Valid to:
8/16/2012 6:59:59 PM

Subject:
CN=Business Bakers, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Business Bakers, L=Helsinki, S=Helsinki, C=FI

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
08FFDE64490119842E1D0271FB0FE97A

File PE Metadata
Compilation timestamp:
6/19/1992 5:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:BGyV07U3kxB5bjk9GS+NZ5Vp4fE4uFBGVu4zSyV4oMAjVvH4VZwJW7Er3Y:8yQUUjZjkMS+NZ5nBDBp4zyoHZYsJl0

Entry address:
0xA0D001

Entry point:
60, E9, 3D, 04, 00, 00, AF, EB, CB, C7, C7, B2, C7, 82, F7, 00, 0B, C7, CA, A4, F2, 64, 97, 06, 0B, C7, 4A, 84, C3, 10, 0B, C7, C7, 50, 64, C3, 10, 0B, C7, D6, 4C, 2D, CA, C7, C7, 8E, 4C, FA, 00, 0B, C7, C7, C7, C7, C7, 54, 4C, CB, 11, 0B, C7, 17, C6, 5C, C7, 12, 0B, C7, 50, 4C, C7, 11, 0B, C7, 52, BF, 54, 64, D8, 11, 0B, C7, 1A, 17, C6, 5C, C3, 11, 0B, C7, 50, 4C, C3, 06, 0B, C7, 54, 64, E5, 11, 0B, C7, 1A, 1E, C6, 5C, C3, 11, 0B, C7, 50, 4C, C7, 07, 0B, C7, 54, 4C, 7C, 00, 0B, C7, C6, A7, 67, B6, D9, C7...
 
[+]

Entropy:
7.9984

Packer / compiler:
ASPack v2.11

Code size:
1.2 MB (1,238,528 bytes)

Program Uninstaller
Program name:
360Amigo System Speedup Free

Display publisher:
360Amigo System SpeedUp

Display version:
1.2.1.8000

Uninstall string:
C:\Program files\360Amigo\Uninstall.exe /REMOVE


The file uninstall.exe has been seen being distributed by the following URL.

Remove uninstall.exe - Powered by Reason Core Security