» coupon companion plugin-bg.exe
Overview
Analysis
File Details
Programs (1)

coupon companion plugin-bg.exe

Coupon Companion Plugin

215 Apps

This is part of a distribution package that is classified as adware distributed by 50onRed. This adware is used to interact with the installed web browsers and inject ads and modify the default search and homepages. The application coupon companion plugin-bg.exe, “Coupon Companion Plugin exe” has been detected as adware by 30 anti-malware scanners. This file is typically installed with the program Coupon Companion Plugin by 215 Apps which is a potentially unwanted software program. This web browser addon will display additional advertisements in the user's browser including popup, banner, contextual hyperlinks as well as affiliate links.

File name:

Publisher:

215 Apps

Product:

Coupon Companion Plugin

Description:

Coupon Companion Plugin exe

Version:

1.1.151.5

MD5:

a98a9085200848e83ff320b596bc10a5

SHA-1:

e4632f3a2b4cf55d0a9e2f3fae0ead36e44bae2a

SHA-256:

ae8a3c16edcfa71a141c08189abf8c2f43f922443c3c5892b6a132e4474e7b0a

Scanner detections:

30 / 68

Status:

Adware

Explanation:

Browser extension that injects additional advertisements (banner and text links) on web pages.

Analysis date:

4/19/2024 9:39:09 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Adware.Agent.NNP

906

AVG

MalSign.Skodna

2015.0.3314

Baidu Antivirus

Adware.Win32.CrossRider

4.0.3.14812

Bitdefender

Adware.Agent.NNP

1.0.20.1120

Bkav FE

W32.Clod5d4.Trojan

1.3.0.4613

Clam AntiVirus

Win.Adware.Agent-2199

0.98/18155

Comodo Security

ApplicUnwnt.Win32.AdWare.BHO.A

17593

Dr.Web

Adware.Plugin.14

9.0.1.0295

Emsisoft Anti-Malware

Adware.Agent.NNP

8.14.08.12.01

ESET NOD32

Win32/Toolbar.CrossRider (variant)

8.9482

Fortinet FortiGate

Adware/Fam.NB

10/22/2014

F-Secure

Adware.Agent.NNP

11.2014-12-08_3

G Data

Adware.Agent.NNP

14.8.22

herdProtect (fuzzy)

variant of vid-saver-bg.exe (Adware)

2014.10.22.12

IKARUS anti.virus

AdWare.Agent

t3scan.2.2.29

K7 AntiVirus

Unwanted-Program

13.176.11292

Malwarebytes

PUP.Optional.VidSaver.A

v2014.08.12.01

McAfee

Artemis!BA2928CB3EB4

5600.6970

MicroWorld eScan

Adware.Agent.NNP

15.0.0.672

NANO AntiVirus

Trojan.Win32.Plugin.baxmbi

0.28.0.57029

nProtect

Adware.Agent.NNP

14.01.10.01

Quick Heal

Adware.Crossid (Not a Virus)

8.14.14.00

Reason Heuristics

PUP.215Apps.AA

14.8.12.13

Sophos

AppRider

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Crossid

10284

Trend Micro House Call

TROJ_GEN.R0CBH0AJA13

7.2.224

Trend Micro

ADW_GAMEPLAYLABS

10.465.12

Vba32 AntiVirus

Trojan.Agent

3.12.24.3

VIPRE Antivirus

GamePlayLabs

26924

ViRobot

Trojan.Win32.A.Agent.907648

2011.4.7.4223

File size:

923 KB (945,152 bytes)

Product version:

1.1.151.5

Original file name:

Coupon Companion Plugin.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\coupon companion plugin\coupon companion plugin-bg.exe

File PE Metadata

Compilation timestamp:

11/12/2012 5:14:14 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

12288:nLbqr/QYb66SyhFdP8MR+IDu3a9nsxNAUgIPOGxNwyxaXHPoIcM06uHZVoU5w3Ag:m8/+xWQ33pKrd9U/+LfpVh76xapd3m

Entry address:

0x8A4A5

Entry point:

E8, F4, AC, 00, 00, E9, 89, FE, FF, FF, 2D, A4, 03, 00, 00, 74, 22, 83, E8, 04, 74, 17, 83, E8, 0D, 74, 0C, 48, 74, 03, 33, C0, C3, B8, 04, 04, 00, 00, C3, B8, 12, 04, 00, 00, C3, B8, 04, 08, 00, 00, C3, B8, 11, 04, 00, 00, C3, 8B, FF, 56, 57, 8B, F0, 68, 01, 01, 00, 00, 33, FF, 8D, 46, 1C, 57, 50, E8, AB, CD, FF, FF, 33, C0, 0F, B7, C8, 8B, C1, 89, 7E, 04, 89, 7E, 08, 89, 7E, 0C, C1, E1, 10, 0B, C1, 8D, 7E, 10, AB, AB, AB, B9, A8, 43, 4E, 00, 83, C4, 0C, 8D, 46, 1C, 2B, CE, BF, 01, 01, 00, 00, 8A, 14, 01... 
[+]

Entropy:

6.5349

Code size:

775.5 KB (794,112 bytes)

The file coupon companion plugin-bg.exe has been discovered within the following program.

Coupon Companion Plugin by 215 Apps

Coupon Companion by Red Online Marketing Group is a Browser Helper Object installed into Internet Explorer that monitors web pages for possible affiliate merchant partners.

coupon-companion.com

83% remove it

Remove coupon companion plugin-bg.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.