home

diamondata.BrowserFilterG.dll

diamondata

Installed as part of the Yontoo diamondata branded web browser extension, the BrowserFilter component is responsible for injecting advertising in the browser based on the context of the HTML being rendered. Ads are injected in the browser in the form of inline text, coupons, multi-site searching and additional offers. The module diamondata.BrowserFilterG.dll by diamondata has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
diamondata  (signed and verified)

Version:
1.0.5204.19549

MD5:
ad879018afb573294c4f1f2649c479b3

SHA-1:
4c5d76cecc05c3f61bdb31c5bda285216968184f

SHA-256:
e1ccb050f8ee51e5df5ed71820f74327b6df1010ec67ef94cc94fb527f726154

Scanner detections:
1 / 68

Status:
Adware

Explanation:
Part of the Yontoo ad injection web browser add-on.

Analysis date:
4/24/2024 6:07:28 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Yontoo (M)
17.3.13.18

File size:
322.3 KB (330,016 bytes)

Product version:
1.0.5204.19549

Original file name:
diamondata.BrowserFilterG.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\Program Files\diamondata\bin\plugins\diamondata.browserfilterg.dll

Digital Signature
Signed by:
diamondata

Authority:
VeriSign, Inc.

Valid from:
8/13/2013 3:00:00 AM

Valid to:
8/14/2015 2:59:59 AM

Subject:
CN=diamondata, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=diamondata, L=San Diego, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
013DE313C00D49CFC0FA964B3315CD82

File PE Metadata
Compilation timestamp:
4/1/2014 2:51:49 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
8.0

.NET CLR dependent:
Yes

Entry address:
0x506F6

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.5938

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
314 KB (321,536 bytes)

Remove diamondata.BrowserFilterG.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.