dnkt.exe

ClientConnect LTD

The file belongs to the ClientConnect (Conduit/Perion) platform, a utility that bundles and monetizes search toolbars and browser add-ons. The application dnkt.exe by ClientConnect has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
ClientConnect LTD  (signed and verified)

MD5:
b38eab9ad992ddb774e1cdb2b5a5fb61

SHA-1:
f70a094807117c69f0e22780f4276c6c42bfc8b0

SHA-256:
f8165b763112dcd48eee7ce9ec89a2991d39bd0effb94564b8c37cc2ad522a19

Scanner detections:
1 / 68

Status:
Adware

Explanation:
Part of the Conduit/ClientConnect toolbar/extension distribution.

Analysis date:
1/20/2020 11:15:11 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Conduit (M)
17.3.12.13

File size:
763.5 KB (781,776 bytes)

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\windows\syswow64\mjcm\dnkt.exe

Digital Signature
Authority:
Symantec Corporation

Valid from:
7/9/2014 2:00:00 AM

Valid to:
7/10/2016 1:59:59 AM

Subject:
CN=ClientConnect LTD, OU=Guardbox, O=ClientConnect LTD, L=Ness Ziona, S=Israel, C=IL

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
3215FFC06E15A37E45F6521CECC8C3BD

File PE Metadata
Compilation timestamp:
4/17/2016 1:05:59 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

Entry address:
0x6F770

Entry point:
E8, 3F, 06, 00, 00, E9, B3, FD, FF, FF, FF, 25, 94, 93, 47, 00, FF, 25, 98, 93, 47, 00, FF, 25, 9C, 93, 47, 00, FF, 25, A0, 93, 47, 00, FF, 25, A8, 93, 47, 00, FF, 25, B4, 93, 47, 00, CC, CC, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 0F, 03, C1, 1B, C9, 0B, C1, 59, E9, 9A, 06, 00, 00, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 07, 03, C1, 1B, C9, 0B, C1, 59, E9, 84, 06, 00, 00, FF, 25, B8, 93, 47, 00, 6A, 14, 68, 80, EE, 48, 00, E8, 52, 05, 00, 00, 83, 65, FC, 00, FF, 4D, 10, 78, 3A, 8B, 4D, 08, 2B, 4D, 0C, 89, 4D, 08...
 
[+]

Code size:
479 KB (490,496 bytes)

Remove dnkt.exe - Powered by Reason Core Security