uninstall.exe

Red Dog Media, Inc.

The application uninstall.exe by Red Dog Media has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This is the uninstaller utility registered in the Windows Control Panel for the program Turbo My Speed by Turbo My Speed.
Publisher:
Turbo My Speed  (signed by Red Dog Media, Inc.)

Product:
Turbo My Speed

Version:
3.2.3.0

MD5:
f678d6b10392f1ca7ad6b5ed7c0ba7bb

SHA-1:
197a67887cc793673f6f6208f4b9ee3b386c45a5

SHA-256:
5371c9e599350642e53ba616639de37e2f1d9fe646fd1469461a6954e613d1b7

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/24/2024 5:03:33 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.RedDogMe.Installer
16.11.28.4

File size:
261.9 KB (268,168 bytes)

Copyright:
Copyright © 2014 Turbo My Speed

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
Language Neutral

Common path:
C:\Program Files\turbo my speed\turbo my speed\uninstall.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
4/10/2014 5:30:00 AM

Valid to:
6/10/2015 5:29:59 AM

Subject:
CN="Red Dog Media, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Red Dog Media, Inc.", L=Henderson, S=Nevada, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
190FBF70C24A707672EE530C4AB3FC30

File PE Metadata
Compilation timestamp:
2/25/2012 12:50:04 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
3072:05BuYAVrgUCPnlmxZpE5A8Ct8fIt0L6b5XqbzEKyTnFmJZNEo3HoVw3lKdoW:050gUCknS5bg8wDqQDFmP5qwV6

Entry address:
0x38AF

Entry point:
81, EC, D4, 02, 00, 00, 53, 55, 56, 57, 6A, 20, 33, ED, 5E, 89, 6C, 24, 18, C7, 44, 24, 10, 68, A2, 40, 00, 89, 6C, 24, 14, FF, 15, 30, 90, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 90, 40, 00, 55, FF, 15, C0, 92, 40, 00, 6A, 08, A3, 98, EB, 47, 00, E8, 36, 2A, 00, 00, 55, 68, B4, 02, 00, 00, A3, B0, EA, 47, 00, 8D, 44, 24, 38, 50, 55, 68, 64, A2, 40, 00, FF, 15, 84, 91, 40, 00, 68, 4C, A2, 40, 00, 68, A0, 6A, 47, 00, E8, 18, 27, 00, 00, FF, 15, B0, 90, 40, 00, 50, BF, A0, F0, 4C, 00, 57, E8, 06, 27, 00, 00...
 
[+]

Entropy:
5.9208

Packer / compiler:
Nullsoft install system v2.x

Code size:
29 KB (29,696 bytes)

Program Uninstaller
Program name:
Turbo My Speed

Display publisher:
Turbo My Speed

Display version:
3.2.3.0

Uninstall string:
C:\Program Files\Turbo My Speed\Turbo My Speed\uninstall.exe


Remove uninstall.exe - Powered by Reason Core Security