WajamInternetEnhancer.exe

Wajam Internet Enhancer

Wajam Internet Technologies Inc.

The file is part of Wajam, a web browser extension that injects social search integration into various search portals such as Google. The application WajamInternetEnhancer.exe has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program Wajam which is a potentially unwanted software program.
Publisher:
Wajam Internet Technologies Inc.

Product:
Wajam Internet Enhancer

Version:
2.12.2.5

MD5:
edeab1cdda0d326baaefcc345a0be221

SHA-1:
90300c89752c1cb5d52e7c1dfb5fa550da4f76ca

SHA-256:
4350da8ab0739bffa9b4001f7f49a43de86acbc7a82413ec0b0537737a2a722f

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
12/27/2024 4:39:07 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.WajamInternetTechnologies.V
14.7.26.4

File size:
82 KB (83,968 bytes)

Product version:
2.12.2.5

Copyright:
Copyright © 2014

Original file name:
WajamInternetEnhancer.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\wajam\wajam internet enhancer\wajaminternetenhancer.exe

File PE Metadata
Compilation timestamp:
7/25/2014 8:44:53 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1536:s2xzUxTmaJ/P/6b1oJulb2tgTgl7i4F97RnsRtRvJzEf31/l5jeSSSSH2C6p7MSV:hxKTmaJ/P/6b1oolb2tgTgl7i4FFRsRy

Entry address:
0x15B3E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
79 KB (80,896 bytes)

The file WajamInternetEnhancer.exe has been discovered within the following program.

Wajam  by Wajam
Wajam is a search-enhancement product, but it does not change homepage or search. This product shows display and/or text ads into third-party websites which may alter normal web page layouts.
www.wajam.com
73% remove it
 
Powered by Should I Remove It?

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):
Connects to rtr3.l7.search.vip.gq1.yahoo.com  (208.71.45.11:80)

TCP (HTTP):
Connects to rtr3.l7.search.vip.bf1.yahoo.com  (63.250.200.63:80)

TCP (HTTP):
Connects to intsrv186.etice.ce.gov.br  (189.90.164.186:80)

TCP (HTTP):
Connects to intsrv002.etice.ce.gov.br  (189.90.164.23:80)

TCP (HTTP):
Connects to ec2-54-235-95-208.compute-1.amazonaws.com  (54.235.95.208:80)

TCP (HTTP):
Connects to ec2-54-235-182-183.compute-1.amazonaws.com  (54.235.182.183:80)

TCP (HTTP):
Connects to ec2-54-225-183-233.compute-1.amazonaws.com  (54.225.183.233:80)

TCP (HTTP):
Connects to ec2-54-221-252-20.compute-1.amazonaws.com  (54.221.252.20:80)

TCP (HTTP):
Connects to s3-1-w.amazonaws.com  (54.231.40.123:80)

TCP (HTTP):
Connects to rtr3.l7.search.vip.ir2.yahoo.com  (217.12.15.96:80)

TCP (HTTP SSL):
Connects to r2-front-02.pushwoosh.com  (88.198.212.148:443)

TCP (HTTP):
Connects to ec2-23-21-42-67.compute-1.amazonaws.com  (23.21.42.67:80)

TCP (HTTP SSL):
Connects to a23-36-76-144.deploy.static.akamaitechnologies.com  (23.36.76.144:443)

TCP (HTTP SSL):
Connects to 194.27.47.177.static.sp2.alog.com.br  (177.47.27.194:443)

TCP (HTTP):
Connects to server-54-230-163-25.jax1.r.cloudfront.net  (54.230.163.25:80)

TCP (HTTP):
Connects to server-52-84-126-36.iad16.r.cloudfront.net  (52.84.126.36:80)

TCP (HTTP):
Connects to IP-130-73-156-104.static.fibrenoire.ca  (104.156.73.130:80)

TCP (HTTP):
Connects to ec2-54-243-230-57.compute-1.amazonaws.com  (54.243.230.57:80)

TCP (HTTP):
Connects to ec2-54-243-128-145.compute-1.amazonaws.com  (54.243.128.145:80)

TCP (HTTP):
Connects to ec2-184-72-248-51.compute-1.amazonaws.com  (184.72.248.51:80)

Remove WajamInternetEnhancer.exe - Powered by Reason Core Security