» {57f7852d-20e3-43d0-bbc5-f8f49f56e567}
Overview
Analysis
File Details

{57f7852d-20e3-43d0-bbc5-f8f49f56e567}

SuperInstall

IMINENT TECHNOLOGY SRL

This is the SIEN AppScion Installer which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed with minimal consent. The file {57f7852d-20e3-43d0-bbc5-f8f49f56e567} by IMINENT TECHNOLOGY SRL has been detected as a potentially unwanted program by 20 anti-malware scanners. The program is a setup application that uses the SIEN SuperInstall installer.

File name:

Publisher:

Live Soft Action S.R.L. (signed by IMINENT TECHNOLOGY SRL)

Product:

SuperInstall

Version:

8.42.3.3

MD5:

08fbe5512ab72a6b642884bba250ce3c

SHA-1:

dcb9b9d8c6fb9fedbbfd8808da970a8132f11f6b

SHA-256:

1fbf4f5057e42dc08ec5f78c4600c4b7d011538840b81647e6d1ff3ca776ddc5

Scanner detections:

20 / 68

Status:

Potentially unwanted

Description:

This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:

4/20/2024 12:00:11 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Adware.Generic.1044611

5832005

Agnitum Outpost

Riskware.Agent

7.1.1

Avira AntiVirus

APPL/Downloader.Gen4

7.11.188.128

avast!

Win32:Adware-BYE [PUP]

141119-1

AVG

Generic

2015.0.3280

Baidu Antivirus

PUA.Win32.GetNow

4.0.3.141124

Bitdefender

Adware.Generic.1044611

1.0.20.1640

Comodo Security

Application.Win32.GetNow.DUJ

20185

Emsisoft Anti-Malware

Adware.Generic.1044611

9.0.0.4570

ESET NOD32

Win32/GetNow.D potentially unwanted application

7.0.302.0

F-Prot

W32/A-8bc9a57f

v6.4.7.1.166

F-Secure

Adware.Generic.1044611

11.2014-24-11_2

G Data

Adware.Generic.1044611

14.11.24

K7 AntiVirus

Unwanted-Program

13.185.14120

Malwarebytes

PUP.Optional.LiveSoftAction

v2014.11.24.04

MicroWorld eScan

Adware.Generic.1044611

15.0.0.984

NANO AntiVirus

Trojan.Win32.Symmi.djcssm

0.28.6.63726

Panda Antivirus

Trj/Genetic.gen

14.11.24.04

Reason Heuristics

PUP.Installer.IMINENTTECHNOLOGYSRL.g

14.11.24.15

VIPRE Antivirus

Threat.4150696

35088

File size:

677 KB (693,296 bytes)

Product version:

8.42.3.3

Original file name:

Setup.exe

Bundler/Installer:

SIEN SuperInstall

Digital Signature

Signed by:

IMINENT TECHNOLOGY SRL

Authority:

GlobalSign nv-sa

Valid from:

7/15/2014 5:59:54 PM

Valid to:

7/16/2015 5:59:54 PM

Subject:

CN=IMINENT TECHNOLOGY SRL, O=IMINENT TECHNOLOGY SRL, L=Bucuresti, C=RO

Issuer:

CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:

112117283610FD537B23B681DB2FB2853FE5

File PE Metadata

Compilation timestamp:

10/15/2014 2:16:05 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

12288:D9QUNYdwNeVugc4ENTKMUQ0g2BarECi/Rma3jvWL9vSTyay90sR:DDYyiLcJdK60g4oEh/C5ayfR

Entry address:

0x194D90

Entry point:

60, BE, 00, 40, 50, 00, 8D, BE, 00, D0, EF, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89... 
[+]

Packer / compiler:

UPX 2.90LZMA

Code size:

580 KB (593,920 bytes)

Remove {57f7852d-20e3-43d0-bbc5-f8f49f56e567} - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.