browser.exe

speed browser

Fast Applications

The application browser.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. While running, it connects to the Internet address xx-fbcdn-shv-02-gru2.fbcdn.net on port 443.
Publisher:
Fast Applications

Product:
speed browser

Version:
48.0.2564.103

MD5:
a367ed7eacfb1d2fa9ad871d5d1a73f7

SHA-1:
03b501b3d3d0ec62692dc904b2911ddabfc87c7b

SHA-256:
e7d1c59d1a2f4c8263cd33339681d1396a552fc4d3003cf3cbfa5e043866246f

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/17/2018 2:00:59 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.FastApplications.Meta (M)
16.2.11.1

File size:
754.5 KB (772,608 bytes)

Product version:
48.0.2564.103

Copyright:
Copyright 2015 Fast Applications. All rights reserved.

Original file name:
browser.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\speed browser\application\browser.exe

File PE Metadata
Compilation timestamp:
2/10/2016 5:02:39 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
12288:2aE0At7nDvofBgHHFeZVZCjJCPyF92nMZMQbkQJd7lkFpJ4T3soTycrzNHPiKh17:2aEx7BHHFeZzeMQbkQJd7lIJ4T3soTyy

Entry address:
0x4B71A

Entry point:
E8, 78, B2, 00, 00, E9, 7F, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 57, 56, 53, 33, FF, 8B, 44, 24, 14, 0B, C0, 7D, 14, 47, 8B, 54, 24, 10, F7, D8, F7, DA, 83, D8, 00, 89, 44, 24, 14, 89, 54, 24, 10, 8B, 44, 24, 1C, 0B, C0, 7D, 14, 47, 8B, 54, 24, 18, F7, D8, F7, DA, 83, D8, 00, 89, 44, 24, 1C, 89, 54, 24, 18, 0B, C0, 75, 18, 8B, 4C, 24, 18, 8B, 44, 24, 14, 33, D2, F7, F1, 8B, D8, 8B, 44, 24, 10, F7, F1, 8B, D3, EB, 41, 8B, D8, 8B, 4C, 24, 18, 8B, 54, 24, 14, 8B, 44, 24, 10, D1, EB, D1...
 
[+]

Entropy:
6.4292

Code size:
410 KB (419,840 bytes)

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):
Connects to ec2-54-72-47-163.eu-west-1.compute.amazonaws.com  (54.72.47.163:80)

TCP (HTTP):
Connects to ec2-52-16-174-255.eu-west-1.compute.amazonaws.com  (52.16.174.255:80)

TCP (HTTP):
Connects to ec2-54-246-181-97.eu-west-1.compute.amazonaws.com  (54.246.181.97:80)

TCP (HTTP):
Connects to ec2-52-17-158-153.eu-west-1.compute.amazonaws.com  (52.17.158.153:80)

TCP (HTTP):
Connects to ec2-54-171-43-206.eu-west-1.compute.amazonaws.com  (54.171.43.206:80)

TCP (HTTP SSL):
Connects to edge-star-mini-shv-01-gru2.facebook.com  (31.13.85.36:443)

TCP (HTTP SSL):
Connects to s3-1.amazonaws.com  (52.216.80.251:443)

TCP (HTTP):
Connects to ec2-52-214-166-46.eu-west-1.compute.amazonaws.com  (52.214.166.46:80)

TCP (HTTP):
Connects to a88-221-112-162.deploy.akamaitechnologies.com  (88.221.112.162:80)

TCP (HTTP SSL):
Connects to 244.21.211.130.bc.googleusercontent.com  (130.211.21.244:443)

TCP (HTTP SSL):
Connects to 207.205.186.35.bc.googleusercontent.com  (35.186.205.207:443)

TCP (HTTP SSL):
Connects to 16.45.211.130.bc.googleusercontent.com  (130.211.45.16:443)

TCP (HTTP SSL):
Connects to 105.242.178.107.bc.googleusercontent.com  (107.178.242.105:443)

TCP (HTTP SSL):
Connects to wb-in-f95.1e100.net  (66.102.1.95:443)

TCP (HTTP SSL):
Connects to wb-in-f102.1e100.net  (66.102.1.102:443)

TCP (HTTP SSL):
Connects to wb-in-f101.1e100.net  (66.102.1.101:443)

TCP (HTTP SSL):
Connects to dh-in-f105.1e100.net  (209.85.203.105:443)

TCP (HTTP):
Connects to a88-221-112-192.deploy.akamaitechnologies.com  (88.221.112.192:80)

TCP (HTTP SSL):
Connects to edge-star-shv-01-gru2.facebook.com  (31.13.85.8:443)

TCP (HTTP):

Remove browser.exe - Powered by Reason Core Security