vuzetoolbar.exe

Vuze Remote Toolbar v27.2

Spigot, Inc.

This component is part of the Spigot browser add-on, a web browser addition that is designed to modify the core search provider in order to redirect search queries through partner portals. The application vuzetoolbar.exe, “Setup Launcher Unicode” by Spigot has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the Spigot Setup installer.
Publisher:
Spigot, Inc.  (signed and verified)

Product:
Vuze Remote Toolbar v27.2

Description:
Setup Launcher Unicode

Version:
27.2

MD5:
5fe1fdccf8f166e09f5d45055c1f05fe

SHA-1:
80b3c4cd0f71159a61ba7963d40f490565fa3827

SHA-256:
9c60c60d991e57142f0f0b4601d05b2fa1bf975f191ee6e1e58a1fd6e2e0ae9c

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
12/25/2024 7:35:09 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Spigot (M)
17.3.8.20

File size:
4.7 MB (4,910,624 bytes)

Product version:
27.2

Copyright:
Copyright © 2005-2015 Spigot, Inc.

Original file name:
InstallShield Setup.exe

File type:
Executable application (Win32 EXE)

Installer:
Spigot Setup

Language:
English (United States)

Common path:
C:\windows\temp\vuzetoolbar.exe

Digital Signature
Signed by:

Authority:
DigiCert Inc

Valid from:
1/15/2015 6:00:00 PM

Valid to:
11/29/2017 6:00:00 AM

Subject:
CN="Spigot, Inc.", O="Spigot, Inc.", L=Incline Village, S=Nevada, C=US, PostalCode=89451, STREET="554 Mays Blvd. #10-456", SERIALNUMBER=E0212222011-9, OID.1.3.6.1.4.1.311.60.2.1.2=Nevada, OID.1.3.6.1.4.1.311.60.2.1.3=US, OID.2.5.4.15=Private Organization

Issuer:
CN=DigiCert EV Code Signing CA (SHA2), OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
03E5C440CF437E7CED5660E25E2C0DE7

File PE Metadata
Compilation timestamp:
4/24/2012 8:16:12 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x6AABB

Entry point:
E8, 6E, 27, 01, 00, E9, 79, FE, FF, FF, 85, C0, 74, 0D, 33, C9, 85, C0, 0F, 9F, C1, 8D, 4C, 09, FF, 8B, C1, C3, 0F, B6, 00, 0F, B6, 09, 2B, C1, 74, 0D, 33, C9, 85, C0, 0F, 9F, C1, 8D, 4C, 09, FF, 8B, C1, C3, 66, 8B, 06, 66, 3B, 01, 74, 35, 0F, B6, 11, 0F, B6, C0, 2B, C2, 74, 11, 33, D2, 85, C0, 0F, 9F, C2, 8D, 54, 12, FF, 8B, C2, 85, C0, 75, 1C, 0F, B6, 46, 01, 0F, B6, 49, 01, 2B, C1, 74, 10, 33, C9, 85, C0, 0F, 9F, C1, 8D, 4C, 09, FF, 8B, C1, C3, 33, C0, C3, 8B, 06, 3B, 01, 74, 6F, 0F, B6, 11, 0F, B6, C0...
 
[+]

Entropy:
7.8552  (probably packed)

Code size:
697 KB (713,728 bytes)

Remove vuzetoolbar.exe - Powered by Reason Core Security