home

ccffacebooksetup-v1.52.exe

Chit Chat For Facebook

Athena IT Limited

The application ccffacebooksetup-v1.52.exe, “Chit Chat For Facebook Setup ” by Athena IT Limited has been detected as adware by 22 anti-malware scanners. The program is a setup application that uses the Inno Setup installer. Part of RelevantKnowledge, a program typically installed via a software bundle (with the user's knowledge should they read the EULA) and will run in the background collecting and monitoring information about the user's behavior in order to build an extensive profile.
Publisher:
ChitChat.org.uk   (signed by Athena IT Limited)

Product:
Chit Chat For Facebook

Description:
Chit Chat For Facebook Setup

Version:
1.52

MD5:
48bc38f3f60062df31b525ce45f3f646

SHA-1:
4f1b4184a13e154fc2b965771e54cd7bd0639d6c

SHA-256:
6158c53b29b58b1119bd8dee3cf9a7010448b26880d9524fbb69f53c36b9b62a

Scanner detections:
22 / 68

Status:
Adware

Analysis date:
4/19/2024 10:17:25 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Adware.Relevant.BH
752

Avira AntiVirus
ADSPY/NaviPromo.J
7.11.149.244

avast!
Win32:PUP-gen [PUP]
2014.9-150113

AVG
RelevantKnowledge
2016.0.3230

Bitdefender
Adware.Relevant.BH
1.0.20.65

Bkav FE
W32.Clode80.Trojan
1.3.0.4959

Comodo Security
ApplicUnwnt
18280

Dr.Web
Trojan.DownLoader7.55414
9.0.1.013

Emsisoft Anti-Malware
Adware.Relevant.BH
8.15.01.13.10

ESET NOD32
Win32/Adware.MarketScore
9.9806

Fortinet FortiGate
Riskware/RK
1/13/2015

F-Secure
Adware.Relevant.BH
11.2015-13-01_3

G Data
Adware.Relevant.BH
15.1.24

IKARUS anti.virus
not-a-virus:WebToolbar.Win32
t3scan.1.6.1.0

K7 AntiVirus
Unwanted-Program
13.177.12095

Kaspersky
not-a-virus:Monitor.Win32.RK
14.0.0.2645

McAfee
Artemis!48BC38F3F600
5600.6886

MicroWorld eScan
Adware.Relevant.BH
16.0.0.39

NANO AntiVirus
Trojan.Win32.Relevant.cbpeni
0.28.0.59911

nProtect
Adware.Relevant.BH
14.05.15.01

Reason Heuristics
PUP.Installer.AthenaITLimited.V
15.1.13.22

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
3.12.26.0

File size:
4.9 MB (5,140,080 bytes)

Product version:
1.52

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\ccffacebooksetup-v1.52.exe

Digital Signature
Signed by:
Athena IT Limited

Authority:
COMODO CA Limited

Valid from:
9/10/2013 8:00:00 PM

Valid to:
9/11/2015 7:59:59 PM

Subject:
CN=Athena IT Limited, O=Athena IT Limited, STREET=3 Oakapple Close, STREET=Wanborough, L=Swindon, S=Wiltshire, PostalCode=SN4 0EW, C=GB

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
77A23924790352E85BE27B1F3714E36A

File PE Metadata
Compilation timestamp:
6/19/1992 6:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:VnZGEQpkc3NznmODCcDaaALd44d93++TNFoRzvYRwPy07HZlzqW5TFBv6:ZZTlcdzmO9eWC9OMNqpARwKGzBTFBy

Entry address:
0xA5F8

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, CE, 8A, FF, FF, E8, D5, 9C, FF, FF, E8, 64, 9F, FF, FF, E8, 07, A0, FF, FF, E8, A6, BF, FF, FF, E8, 11, E9, FF, FF, E8, 78, EA, FF, FF, 33, C0, 55, 68, C9, AC, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 92, AC, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, B2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, C4, 97, FF, FF, 8D, 55, F0, 33, C0, E8, B6, C5, FF, FF, 8B, 55...
 
[+]

Entropy:
7.9961

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
39.5 KB (40,448 bytes)

Remove ccffacebooksetup-v1.52.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.