uninstall.exe

Rational Thought Solutions

This is the uninstall module for the Injekt branded web browser extension program which injects advertising in the web browser as well as modifies the browser settings. The uninstaller is registered within Control Panel > Add/Remove Programs. The application uninstall.exe by Rational Thought Solutions has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is the uninstaller utility registered in the Windows Control Panel for the program Celebrity Alert by Rational Thought Solutions.
Publisher:
Rational Thought Solutions  (signed and verified)

MD5:
4021941ec5fe9c71f7d1a4e22a162fb0

SHA-1:
b7510c42da102d732d54f1be9e9de6f2c502e206

SHA-256:
137751304e586b5a9ec649c21a83733b17eb5f405add45272ee03699a75aa3a6

Scanner detections:
1 / 68

Status:
Adware

Explanation:
Injects display ads (banner ads), in-text ads, interstitial ads, or other types of ads in the web browser as well as alters the browsers settings (home page, search, DNS, and security protocols).

Analysis date:
12/25/2024 5:38:32 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Injekt (M)
17.2.24.4

File size:
524.5 KB (537,072 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\ProgramData\celebrityalert\uninstall.exe

Digital Signature
Authority:
Symantec Corporation

Valid from:
1/23/2015 4:00:00 PM

Valid to:
4/24/2016 4:59:59 PM

Subject:
CN=Rational Thought Solutions, O=Rational Thought Solutions, L=St. James, S=St. James, C=BB

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
00B81C1C4DB6AD87B9B581116F115E4C

File PE Metadata
Compilation timestamp:
3/6/2015 9:55:40 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

Entry address:
0x429CF

Entry point:
E8, F0, D4, 00, 00, E9, 7F, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, 57, 56, 8B, 74, 24, 10, 8B, 4C, 24, 14, 8B, 7C, 24, 0C, 8B, C1, 8B, D1, 03, C6, 3B, FE, 76, 08, 3B, F8, 0F, 82, 68, 03, 00, 00, 0F, BA, 25, EC, 84, 47, 00, 01, 73, 07, F3, A4, E9, 17, 03, 00, 00, 81, F9, 80, 00, 00, 00, 0F, 82, CE, 01, 00, 00, 8B, C7, 33, C6, A9, 0F, 00, 00, 00, 75, 0E, 0F, BA, 25, 60, 60, 47, 00, 01, 0F, 82, DA, 04, 00, 00, 0F, BA, 25, EC, 84, 47, 00, 00, 0F, 83, A7, 01, 00, 00, F7, C7, 03, 00, 00, 00, 0F, 85, B8, 01, 00...
 
[+]

Entropy:
6.3262

Code size:
390.5 KB (399,872 bytes)

Program Uninstaller
Program name:
Celebrity Alert

Display publisher:
Rational Thought Solutions

Display version:
2.7.61

Uninstall string:
C:\ProgramData\CelebrityAlert\uninstall.exe /kb=y /ic=1


Remove uninstall.exe - Powered by Reason Core Security