home

233821f4-bc98-4a84-bd33-69008372d1ce.dll

Krance Development

This adware is a web browser extension that will inject advertising in the browser in the form of unwanted banners and text-links which may link to malware sites and install unwanted software. The module 233821f4-bc98-4a84-bd33-69008372d1ce.dll by Krance Development has been detected as adware by 11 anti-malware scanners. This file is typically installed with the program Internet Speed Checker by Sailor Project which is a potentially unwanted software program. The library is built using the Crossrider cross-browser extension platform. While the file utilizes the Crossrider framework and delivery services, it is not owned by Crossrider. It is distributed as part of the Brightcircle group of browser-extensions.
Publisher:
Krance Development  (signed and verified)

MD5:
ab805c5d54c79dacca7f5101fa496c4f

SHA-1:
f09b4ae822956873ea80d8ec2c10b194eb2b846b

SHA-256:
5f264f79deb43afcaa22699928082cc169aecf557f610a470b36e4f60c3eacb5

Scanner detections:
11 / 68

Status:
Adware

Explanation:
The software may change the browser's home page and search provider settings as well as display advertisements. Distributed through the Brightcircle investments brand.

Analysis date:
4/23/2024 5:02:41 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
ADWARE/CrossRider.Gen2
7.11.180.154

avast!
Win32:Adware-gen [Adw]
141023-1

AVG
Generic
2015.0.3313

ESET NOD32
Win32/Toolbar.CrossRider.BB (variant)
8.10604

G Data
Win32.Adware.Crossrider
14.10.24

IKARUS anti.virus
not-a-virus:AdWare.Adwapper
t3scan.1.7.8.0

McAfee
Artemis!E63E5FEA5159
5600.6943

Panda Antivirus
Trj/Genetic.gen
14.11.18.02

Qihoo 360 Security
HEUR/Malware.QVM30.Gen
1.0.0.1015

Reason Heuristics
PUP.KranceDevelopment.e
14.10.22.16

Vba32 AntiVirus
AdWare.Adwapper
3.12.26.3

File size:
138.4 KB (141,728 bytes)

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\internet speed checker\233821f4-bc98-4a84-bd33-69008372d1ce.dll

Digital Signature
Signed by:
Krance Development

Authority:
COMODO CA Limited

Valid from:
8/28/2014 2:00:00 AM

Valid to:
8/29/2015 1:59:59 AM

Subject:
CN=Krance Development, O=Krance Development, STREET=Athinodorou 3, STREET=Dasoupoli Strovolos, L=Nicosia, S=Cyprus, PostalCode=2025, C=CY

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
2F8A4746EB05936853BC17805C72D300

File PE Metadata
Compilation timestamp:
10/1/2014 9:35:19 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
1536:+T1a3UwPdkesGjwLiIwnf6iENK/TKkQk/K+ucuX53sWjcdyhrLtN1m9mWCHK8:61wVPdQsIDNK9i+k4yh/tqwWCq8

Entry address:
0x7238

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, FD, 39, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, 70, BB, 01, 10, E8, D9, 14, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, 4C, E2, 01, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, 60, 70, 01, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
82 KB (83,968 bytes)

The file 233821f4-bc98-4a84-bd33-69008372d1ce.dll has been discovered within the following program.

Internet Speed Checker  by Sailor Project
Internet Speed Checker is an adware web browser application that displays banner ads as well as contextual link ads that are injected in the web page.
62% remove it
 
Powered by Should I Remove It?

Remove 233821f4-bc98-4a84-bd33-69008372d1ce.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.