browser.exe

Speed Browser

Long Mile Solutions, LLC

The application browser.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Long Mile Solutions, LLC

Product:
Speed Browser

Version:
37.0.2062.94

MD5:
3c5c02a4bacaef33239c3103758f3561

SHA-1:
f7a46c7d7a6d42588120f50528163710a0ad54d6

SHA-256:
a5e0bbe16eeaed170c5dbabf764726745a3bc585e9bb065433aece37e2be0b0f

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/13/2019 2:30:06 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Injekt.LongMileSolutions.Meta (M)
15.6.19.11

File size:
788.5 KB (807,424 bytes)

Product version:
37.0.2062.94

Copyright:
Copyright 2014 Long Mile Solutions, LLC. All rights reserved.

Original file name:
browser.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\speed browser\application\browser.exe

File PE Metadata
Compilation timestamp:
9/19/2014 12:00:10 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
12288:pZMbWRTzW/HiYVeVa8HvgXJpX4ZHJG1m7JKfna6jN/ZgYCculjRWfJ6UEwDogt/L:pZ9R68HlpG1MsPa0ZSjRBDe

Entry address:
0x44988

Entry point:
E8, 57, D1, 00, 00, E9, 7F, FE, FF, FF, 55, 8B, EC, 8B, 45, 08, 99, F7, 7D, 0C, 5D, C3, CC, CC, 8B, 44, 24, 08, 8B, 4C, 24, 10, 0B, C8, 8B, 4C, 24, 0C, 75, 09, 8B, 44, 24, 04, F7, E1, C2, 10, 00, 53, F7, E1, 8B, D8, 8B, 44, 24, 08, F7, 64, 24, 14, 03, D8, 8B, 44, 24, 08, F7, E1, 03, D3, 5B, C2, 10, 00, A1, 64, 6A, 49, 00, 56, 6A, 14, 5E, 85, C0, 75, 07, B8, 00, 02, 00, 00, EB, 06, 3B, C6, 7D, 07, 8B, C6, A3, 64, 6A, 49, 00, 6A, 04, 50, E8, 30, 52, 00, 00, A3, 60, 6A, 49, 00, 59, 59, 85, C0, 75, 1E, 6A, 04...
 
[+]

Entropy:
6.4072

Code size:
387 KB (396,288 bytes)

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP SSL):
Connects to 206.89.184.35.bc.googleusercontent.com  (35.184.89.206:443)

TCP (HTTP):
Connects to ec2-54-72-47-163.eu-west-1.compute.amazonaws.com  (54.72.47.163:80)

TCP (HTTP SSL):
Connects to 177.135.177.208.static.adsl.gvt.net.br  (177.135.177.208:443)

TCP (HTTP SSL):
Connects to 177.135.177.241.static.adsl.gvt.net.br  (177.135.177.241:443)

TCP (HTTP):
Connects to ec2-54-171-43-206.eu-west-1.compute.amazonaws.com  (54.171.43.206:80)

TCP (HTTP SSL):
Connects to 177.135.177.240.static.adsl.gvt.net.br  (177.135.177.240:443)

TCP (HTTP):
Connects to ec2-52-16-174-255.eu-west-1.compute.amazonaws.com  (52.16.174.255:80)

TCP (HTTP SSL):
Connects to 177.135.177.249.static.adsl.gvt.net.br  (177.135.177.249:443)

TCP (HTTP):
Connects to redirector1.dynect.net  (216.146.46.10:80)

TCP (HTTP):
Connects to ec2-52-209-20-4.eu-west-1.compute.amazonaws.com  (52.209.20.4:80)

TCP (HTTP):
Connects to ec2-34-250-194-62.eu-west-1.compute.amazonaws.com  (34.250.194.62:80)

TCP (HTTP SSL):
Connects to 177.135.177.223.static.adsl.gvt.net.br  (177.135.177.223:443)

TCP (HTTP SSL):
Connects to xx-fbcdn-shv-02-gru2.fbcdn.net  (157.240.12.16:443)

TCP (HTTP SSL):
Connects to server-52-84-174-32.gru50.r.cloudfront.net  (52.84.174.32:443)

TCP (HTTP SSL):
Connects to edge-star-mini-shv-01-gru2.facebook.com  (31.13.85.36:443)

TCP (HTTP SSL):
Connects to bam-7.nr-data.net  (162.247.242.19:443)

TCP (HTTP SSL):
Connects to 8.48.197.104.bc.googleusercontent.com  (104.197.48.8:443)

TCP (HTTP SSL):
Connects to 177.43.170.119.static.host.gvt.net.br  (177.43.170.119:443)

TCP (HTTP SSL):
Connects to 177.135.177.229.static.adsl.gvt.net.br  (177.135.177.229:443)

TCP (HTTP SSL):
Connects to 177.135.177.227.static.adsl.gvt.net.br  (177.135.177.227:443)

Remove browser.exe - Powered by Reason Core Security