home

3DSlots2GO.exe

3DSlots2GO

Crossrider Advance Technologies

The application 3DSlots2GO.exe by Crossrider Advance Technologies has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is built using the Crossrider cross-browser extension platform. While the file utilizes the Crossrider framework and delivery services, it is not owned by Crossrider.
Publisher:
Product Madness Inc.  (signed by Crossrider Advance Technologies)

Product:
3DSlots2GO

Description:
3DSlots2GO exe

Version:
1.1.147.149

MD5:
e9f1845c0a447dfd28bd11710d958df6

SHA-1:
45fe4c79ee94a6a590ac25d3d084c9878e4ad075

SHA-256:
9031763d42e8783bcd6b08ffed6f1cdb4e6c9d274aecdc18f79541869f95aa9d

Scanner detections:
1 / 68

Status:
Potentially unwanted

Explanation:
The software may change the browser's home page and search provider settings as well as display advertisements.

Analysis date:
5/10/2024 5:32:15 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Crossrider.ProductM.Meta (M)
16.6.20.9

File size:
330.7 KB (338,640 bytes)

Product version:
1.1.147.149

Copyright:
Copyright 2011

Original file name:
3DSlots2GO.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\3dslots2go\3dslots2go.exe

Digital Signature
Signed by:
Crossrider Advance Technologies

Authority:
COMODO CA Limited

Valid from:
8/29/2011 8:00:00 PM

Valid to:
8/29/2012 7:59:59 PM

Subject:
CN=Crossrider Advance Technologies, O=Crossrider Advance Technologies, STREET=9 Kazir St., L=Afula, S=Israel, PostalCode=18313, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
22188FE0FBD2025F471DE5A363A15E8E

File PE Metadata
Compilation timestamp:
1/10/2012 4:55:36 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:JpnejRV1Q1fmIdvoUIw6kWsdRE0hu0bLWmEKilsRTylxl5A:JpyRV1QJbdvoUIwjE0HbLWmEK/0vA

Entry address:
0x2ED77

Entry point:
E8, B8, 75, 00, 00, E9, 89, FE, FF, FF, 57, 8B, C6, 83, E0, 0F, 85, C0, 0F, 85, C1, 00, 00, 00, 8B, D1, 83, E1, 7F, C1, EA, 07, 74, 65, EB, 06, 8D, 9B, 00, 00, 00, 00, 66, 0F, 6F, 06, 66, 0F, 6F, 4E, 10, 66, 0F, 6F, 56, 20, 66, 0F, 6F, 5E, 30, 66, 0F, 7F, 07, 66, 0F, 7F, 4F, 10, 66, 0F, 7F, 57, 20, 66, 0F, 7F, 5F, 30, 66, 0F, 6F, 66, 40, 66, 0F, 6F, 6E, 50, 66, 0F, 6F, 76, 60, 66, 0F, 6F, 7E, 70, 66, 0F, 7F, 67, 40, 66, 0F, 7F, 6F, 50, 66, 0F, 7F, 77, 60, 66, 0F, 7F, 7F, 70, 8D, B6, 80, 00, 00, 00, 8D, BF...
 
[+]

Entropy:
6.4601

Code size:
262 KB (268,288 bytes)

Remove 3DSlots2GO.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.