» DatamngrUI.exe
Overview
Analysis
File Details

DatamngrUI.exe

Data Manager

Bandoo Media, Inc

The application DatamngrUI.exe by Bandoo Media, Inc has been detected as adware by 26 anti-malware scanners.

File name:

DatamngrUI.exe

Publisher:

Bandoo Media Inc. (signed by Bandoo Media, Inc)

Product:

Data Manager

Version:

5.0.0.8778

MD5:

2555f088dc53aee86ac13a7dedbf9218

SHA-1:

91c0b25b94a42fbd54f75c8270b645bd58367ca4

SHA-256:

2e9ee7014c4fcd29eccf245a5d3ddf5a8a61b56d969125a7b9ee208e59e9e07d

Scanner detections:

26 / 68

Status:

Adware

Analysis date:

4/26/2024 10:04:44 AM UTC (today)

Scan engine

Detection

Engine version

AhnLab V3 Security

Win32/ChiHack.6652

2014.06.06

avast!

Win32:Oncer

2014.9-160114

Baidu Antivirus

Malware.Win32.Adware

4.0.3.16114

Bkav FE

W32.HfsAdware

1.3.0.7383

Boost by Reason

Optional.BandooMedia

188838

Clam AntiVirus

WIN.Worm.Brontok

0.98/19047

Comodo Security

Application.Win32.bandoo.gc

17372

Dr.Web

Adware.Bandoo.226

9.0.1.014

ESET NOD32

Win32/Toolbar.SearchSuite

10.8636

Fortinet FortiGate

Riskware/SearchSuite

1/14/2016

F-Prot

W32/Thecid.B@mm

v6.4.6.5.141

G Data

Win32.Adware.Bandoo

16.1.24

IKARUS anti.virus

Email-Worm.Win32.Runouce

t3scan.1.6.1.0

K7 AntiVirus

EmailWorm

13.1712319

Kaspersky

not-a-virus:WebToolbar.Win32.SearchSuite

14.0.0.818

Malwarebytes

PUP.Optional.Bandoo.A

v2016.01.14.09

McAfee

SearchSuite

5600.6521

Microsoft Security Essentials

Threat.Undefined

1.175.1445.0

Qihoo 360 Security

Virus.Win32.CNHacker.C

1.0.0.1015

Quick Heal

W32.Runouce.B

1.16.14.00

Reason Heuristics

PUP.BandooToolbar.BandooMedia (M)

16.1.14.9

Rising Antivirus

PE:Worm.ChineseHacker-2!23772

23.00.65.16112

Sophos

W32/Chir-A

4.98

Trend Micro House Call

TROJ_GEN.F47V0806

7.2.14

Vba32 AntiVirus

Virus.Win32.Chur.A

3.12.26.0

VIPRE Antivirus

Threat.219451

29800

File size:

3.4 MB (3,534,848 bytes)

Product version:

5.0.0.8778

Original file name:

DatamngrUI.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\movies toolbar\datamngr\datamngrui.exe

Digital Signature

Signed by:

Bandoo Media, Inc

Authority:

Thawte, Inc.

Valid from:

9/19/2012 2:00:00 AM

Valid to:

11/3/2014 12:59:59 AM

Subject:

CN="Bandoo Media, Inc", O="Bandoo Media, Inc", L=Panama City, S=Panama, C=PA

Issuer:

CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:

7A5189D163723107DEFA157662A4BAE4

File PE Metadata

Compilation timestamp:

8/11/2013 6:24:41 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

49152:UNjHg9MVSaQyPHWM261fEVyADORe9FfwKc7rL9Z7d6IEeaxE4K51HHnV5U7FffSO:0PHWSdW9Fo7rbg6axhKrHoFfZ

Entry address:

0x201DF5

Entry point:

E8, 79, 10, 01, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 56, 8B, 75, 0C, 8D, 46, FF, 85, C6, 74, 14, E8, 5B, 71, 00, 00, C7, 00, 16, 00, 00, 00, E8, 32, 86, 00, 00, 33, C0, EB, 71, 8B, 4D, 08, 57, 8B, 7D, 10, 85, FF, 74, 18, 3B, F9, 72, 14, E8, 38, 71, 00, 00, C7, 00, 16, 00, 00, 00, E8, 0F, 86, 00, 00, 33, C0, EB, 4D, 83, FE, 04, 77, 03, 6A, 04, 5E, F7, DF, 4E, 83, E7, 03, 53, 8D, 5C, 37, 04, 8D, 04, 0B, 3B, C8, 76, 0D, E8, 0A, 71, 00, 00, C7, 00, 0C, 00, 00, 00, EB, 0D, 50, E8, E6, C8, FF, FF, 59, 8B... 
[+]

Code size:

2.5 MB (2,583,040 bytes)

Remove DatamngrUI.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.