home

00000000

SuperCharging

Maxiget Limited

This is a bundle installer which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed with minimal consent. The file 00000000 by Maxiget Limited has been detected as adware by 20 anti-malware scanners. The program is a setup application that uses the New IT Desktop Setup installer.
Publisher:
SPC LLC  (signed by Maxiget Limited)

Product:
SuperCharging

Description:
DWD

Version:
3, 3, 17, 0

MD5:
3830bda63af7ccceca7ccd4ce45aaa4b

SHA-1:
c5a458879425e504f1a722c12547a56fb3e06f30

SHA-256:
d511cffe5ede8f9c6dba6edb88b1fd2b7d4d193db683aaa7d2c5e51b77ad3851

Scanner detections:
20 / 68

Status:
Adware

Explanation:
This is a modified installer version of the software and bundles additional offers including adware.

Description:
This is an installer which may bundle legitimate applications with offers for additional 3rd-party applications that may be unwanted by the user. While the installer contains an 'opt-out' feature this is not set be defult and is usually overlooked.

Analysis date:
4/26/2024 5:41:34 AM UTC  (today)

Scan engine
Detection
Engine version

AegisLab AV Signature
Troj.W32.Badur
2.1.4+

Agnitum Outpost
PUA.4Shared
7.1.1

Avira AntiVirus
APPL/Downloader.Gen
7.11.182.126

AVG
Generic
2015.0.3342

Clam AntiVirus
Win.Trojan.4shared-14
0.98/21411

Dr.Web
Adware.Downware.6176
9.0.1.0266

ESET NOD32
Win32/4Shared.S potentially unwanted application
8.7.0.302.0

F-Prot
W32/A-083dbbf9
v6.4.7.1.166

herdProtect (fuzzy)
variant of star+wars3a+episode+iii+...0p+brrip+x264+-+yify.exe (Adware)
2014.12.5.14

IKARUS anti.virus
PUA.4Shared
t3scan.1.8.3.0

K7 AntiVirus
Unwanted-Program
13.185.13853

Kaspersky
not-a-virus:Downloader.Win32.GetFaster
14.0.0.3207

Malwarebytes
PUP.Optional.4Shared
v2014.09.23.01

McAfee
PUP-FNX
5600.6998

NANO AntiVirus
Trojan.Win32.MLW.dcebax
0.28.6.62995

Reason Heuristics
PUP.MaxigetLimited.I
14.9.23.11

Sophos
4Share Downloader
4.98

Vba32 AntiVirus
Downloader.GetFaster
3.12.26.3

VIPRE Antivirus
Threat.4150696
34232

Zillya! Antivirus
Downloader.GetFaster.Win32.22
2.0.0.1973

File size:
540.6 KB (553,552 bytes)

Product version:
3, 3, 17, 0

Copyright:
2013

Trademarks:
-

Bundler/Installer:
New IT Desktop Setup

Language:
Swedish (Sweden)

Common path:
C:\users\{user}\appdata\local\google\chrome\user data\default\file system\005\t\00\00000000

Digital Signature
Signed by:
Maxiget Limited

Authority:
GoDaddy.com, Inc.

Valid from:
8/15/2013 8:41:32 AM

Valid to:
8/15/2016 8:41:32 AM

Subject:
CN=Maxiget Limited, O=Maxiget Limited, L=Limassol, S=Cyprus, C=CY

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
045BA815265145

File PE Metadata
Compilation timestamp:
4/17/2014 6:26:51 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:j5SFRIrVisUqEFDyfijX1o/t7htpFqCjRQJ79xbuPhQkBe0bg:j5SFm5isULFDzjlo/1fGNlkBlg

Entry address:
0x2FEA4

Entry point:
E8, 54, 98, 00, 00, E9, 78, FE, FF, FF, CC, CC, 8B, 4C, 24, 04, F7, C1, 03, 00, 00, 00, 74, 24, 8A, 01, 83, C1, 01, 84, C0, 74, 4E, F7, C1, 03, 00, 00, 00, 75, EF, 05, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8B, 01, BA, FF, FE, FE, 7E, 03, D0, 83, F0, FF, 33, C2, 83, C1, 04, A9, 00, 01, 01, 81, 74, E8, 8B, 41, FC, 84, C0, 74, 32, 84, E4, 74, 24, A9, 00, 00, FF, 00, 74, 13, A9, 00, 00, 00, FF, 74, 02, EB, CD, 8D, 41, FF, 8B, 4C, 24, 04, 2B, C1, C3, 8D, 41, FE, 8B, 4C, 24, 04...
 
[+]

Code size:
356 KB (364,544 bytes)

Remove 00000000 - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.