home

activate.exe

Giveaway of the Day

Softdeluxe

The application activate.exe by Softdeluxe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
giveawayoftheday.com  (signed by Softdeluxe)

Product:
Giveaway of the Day

Version:
2.0.1.16

MD5:
86fa20294d467d4dc524afdacea15e36

SHA-1:
7e5fff321b19a326d441f023a94716c3d883da47

SHA-256:
c9dccedef86d76873d511908a1f8e97ad982709d468611e95a946c395b1c2d92

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/19/2024 5:20:14 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Softdelu (M)
16.3.2.22

File size:
3.1 MB (3,294,328 bytes)

Product version:
2.0.1.0

Copyright:
Copyright (C) giveawayoftheday.com, 2006-2012

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\folderico20\activate.exe

Digital Signature
Signed by:
Softdeluxe

Authority:
Thawte, Inc.

Valid from:
8/12/2011 2:00:00 AM

Valid to:
8/12/2013 1:59:59 AM

Subject:
CN=Softdeluxe, O=Softdeluxe, L=Dubna, S=Moscow region, C=RU

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
03210A27BF81D359C5333208DDA8F10D

File PE Metadata
Compilation timestamp:
10/9/2012 7:14:09 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
49152:v9Z0QRrE2jtF9QXcb+craE6LzJsXL+I65rr0SceVceVXx9Abe:b0krE2hF9ec7raEYWg0SceVRVXxd

Entry address:
0x671000

Entry point:
68, 00, 00, 00, 00, 68, 01, 00, 00, 00, 68, 00, 00, 40, 00, 68, 00, 00, A7, 00, E9, 00, 04, 00, 00, 04, 22, 00, 00, 00, 00, 00, 00, C6, 21, 00, 00, 00, 00, 00, 00, A2, 21, 00, 00, 00, 00, 00, 00, 48, 21, 00, 00, 5A, 21, 00, 00, 6E, 21, 00, 00, 00, 00, 00, 00, 88, 21, 00, 00, 00, 00, 00, 00, 26, 22, 00, 00, 00, 00, 00, 00, E2, 21, 00, 00, 00, 00, 00, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 00, 00, 00...
 
[+]

Packer / compiler:
PKLITE32 v1.1

Code size:
1.2 MB (1,257,472 bytes)

Remove activate.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.