home

bedifagdbh.exe

The application bedifagdbh.exe has been detected as a potentially unwanted program by 14 anti-malware scanners. According to AVG, this software downloads additional adware offers during setup.
Version:
2015.82.92.64

MD5:
b7b05af0059c7805e7aca9b8eee36dd2

SHA-1:
3dc98315192267473fd820381a261728b4d1b81b

SHA-256:
99d73dd8fb950ae3945ba6068767d7850bed8dcf591a2b4c0ad229041454b4b7

Scanner detections:
14 / 68

Status:
Potentially unwanted

Explanation:
Bundles additional adware offers during download and installation using the OutBrowse installer.

Analysis date:
4/25/2024 10:32:18 PM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
PUP/Win32.OutBrowse
2015.08.04

Avira AntiVirus
PUA/Outbrowse.Gen
8.3.1.6

AVG
Downloader
2016.0.3029

Baidu Antivirus
Adware.Win32.OutBrowse
4.0.3.1583

Bitdefender
Gen:Variant.Mikey.21134
1.0.20.1255

ESET NOD32
Win32/OutBrowse.BZ potentially unwanted application
9.7.0.302.0

G Data
Win32.Adware.Outbrowse
15.8.25

herdProtect (fuzzy)
variant of bedifhajed.exe
2015.9.8.1

IKARUS anti.virus
PUA.OutBrowse
t3scan.1.9.5.0

K7 AntiVirus
Adware
13.207.16770

Kaspersky
not-a-virus:HEUR:AdWare.Win32.OutBrowse
14.0.0.1639

Malwarebytes
PUP.Optional.OutBrowse
v2015.08.03.06

Panda Antivirus
Trj/Genetic.gen
15.08.03.06

Sophos
Generic PUA BN (PUA)
4.98

File size:
1 MB (1,061,888 bytes)

Product version:
2015.82.92.64

Copyright:
Copyright (C) 2014

Original file name:
2015829264.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\bedifagdbh.exe

File PE Metadata
Compilation timestamp:
8/2/2015 2:33:07 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:6h9hJ8JjmFYavPT0aw9kl16tvb5NQNLpStC0pOT1aWYS00sK:K9vdvPT055tvNtC0YwSrsK

Entry address:
0x3346B

Entry point:
E8, CA, A8, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 20, 8B, 45, 08, 56, 57, 6A, 08, 59, BE, 90, 48, 4D, 00, 8D, 7D, E0, F3, A5, 89, 45, F8, 8B, 45, 0C, 5F, 89, 45, FC, 5E, 85, C0, 74, 0C, F6, 00, 08, 74, 07, C7, 45, F4, 00, 40, 99, 01, 8D, 45, F4, 50, FF, 75, F0, FF, 75, E4, FF, 75, E0, FF, 15, 68, 40, 4D, 00, C9, C2, 08, 00, B8, 7F, E8, 43, 00, A3, 78, 0F, 4F, 00, C7, 05, 7C, 0F, 4F, 00, 75, DF, 43, 00, C7, 05, 80, 0F, 4F, 00, 29, DF, 43, 00, C7, 05, 84, 0F, 4F, 00, 62, DF, 43, 00, C7, 05...
 
[+]

Entropy:
6.2970

Code size:
842.5 KB (862,720 bytes)

Remove bedifagdbh.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.