home

77d923fc-4eae-4c3c-b2b8-efa0bb9b5933.exe

Torpedo

Naruto Source

This adware is a web browser extension that will inject advertising in the browser in the form of unwanted banners and text-links which may link to malware sites and install unwanted software. The application 77d923fc-4eae-4c3c-b2b8-efa0bb9b5933.exe by Naruto Source has been detected as adware by 7 anti-malware scanners. It runs as a scheduled task under the Windows Task Scheduler triggered to execute each time a user logs in. This file is typically installed with the program Internet Speed Checker by Sailor Project which is a potentially unwanted software program. It is part of the Brightcircle group of web-extensions that inject advertisements in the browser.
Publisher:
Naruto Source  (signed and verified)

Product:
Torpedo

Version:
1.0.0.0

MD5:
03368265b89ea307012c3c09e3546203

SHA-1:
838858138081b5f73c631eb9d024d7d8dccb18a4

SHA-256:
eb11e40cd1801a5a69bfc00d11775076c2597329312795aabfbdbb568e9b656c

Scanner detections:
7 / 68

Status:
Adware

Analysis date:
4/25/2024 10:53:36 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
Adware/CrossRider.pq
7.11.170.102

AVG
Generic
2015.0.3364

IKARUS anti.virus
Trojan.GoogUpdate
t3scan.1.7.5.0

Kaspersky
not-a-virus:AdWare.NSIS.Adwapper
15.0.0.463

Qihoo 360 Security
Win32/Virus.Adware.970
1.0.0.1015

Reason Heuristics
PUP.Task.NarutoSource.e
14.9.1.22

Vba32 AntiVirus
AdWare.Adwapper
3.12.26.3

File size:
31.4 KB (32,104 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2014

Original file name:
TorpedoCh.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\internet speed checker\77d923fc-4eae-4c3c-b2b8-efa0bb9b5933.exe

Digital Signature
Signed by:
Naruto Source

Authority:
COMODO CA Limited

Valid from:
7/27/2014 8:00:00 PM

Valid to:
7/28/2015 7:59:59 PM

Subject:
CN=Naruto Source, O=Naruto Source, STREET=Athinodorou 3, STREET=Dasoupoli Strovolos, L=Nicosia, S=Cyprus, PostalCode=2025, C=CY

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
1CE82906A7F364268F66771839675655

File PE Metadata
Compilation timestamp:
8/18/2014 8:08:19 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
768:GdL5HFxTS9acVNVdlG959NepeFnXi4Baf:EHX+fdlRcFn3af

Entry address:
0x81EE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 02, 00, 10, 00, 00, 00, 20, 00, 00, 80, 18, 00, 00, 00, 38, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 01, 00, 00, 00, 50, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 01, 00, 00, 00, 68, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.4605

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
24.5 KB (25,088 bytes)

Scheduled Task
Task name:
77d923fc-4eae-4c3c-b2b8-efa0bb9b5933

Trigger:
Logon (Runs on logon)

Action:
77d923fc-4eae-4c3c-b2b8-efa0bb9b5933.exe 001726 7c0ca2a0d5114050b719e7c61acabb25ie 61752 14


The file 77d923fc-4eae-4c3c-b2b8-efa0bb9b5933.exe has been discovered within the following program.

Internet Speed Checker  by Sailor Project
Internet Speed Checker is an adware web browser application that displays banner ads as well as contextual link ads that are injected in the web page.
62% remove it
 
Powered by Should I Remove It?

Remove 77d923fc-4eae-4c3c-b2b8-efa0bb9b5933.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.