home

freeaquariumfishss.exe

Free Aquarium Fish Screensaver

OurScreensavers

The application freeaquariumfishss.exe, “Free Aquarium Fish Screensaver Setup ” has been detected as a potentially unwanted program by 26 anti-malware scanners. The program is a setup application that uses the Inno Setup installer, however the file is not signed with an authenticode signature from a trusted source. Part of RelevantKnowledge, a program typically installed via a software bundle (with the user's knowledge should they read the EULA) and will run in the background collecting and monitoring information about the user's behavior in order to build an extensive profile.
Publisher:
OurScreensavers

Product:
Free Aquarium Fish Screensaver

Description:
Free Aquarium Fish Screensaver Setup

Version:
4.0.0.0

MD5:
3a3478c93da5cc79de6eadf0ce9d515f

SHA-1:
c4887576d193dd1bbd9bf8e881b4ac37bbf9761a

SHA-256:
57ed597375a43e2d99f674e8ed3cb29121803e12e6700b3fc7be0285729f9443

Scanner detections:
26 / 68

Status:
Potentially unwanted

Analysis date:
4/25/2024 3:50:43 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Adware.Relevant.BA
726

Avira AntiVirus
ADWARE/Adware.Gen
7.11.193.76

avast!
Win32:Relevant-P [PUP]
2014.9-150209

AVG
RelevantKnowledge
2016.0.3204

Baidu Antivirus
Hacktool.Win32.Monitor
4.0.3.1529

Bitdefender
Adware.Relevant.BA
1.0.20.200

Dr.Web
Adware.Relevant.75
9.0.1.040

ESET NOD32
Win32/Adware.MarketScore
9.10839

Fortinet FortiGate
Riskware/RK
2/9/2015

F-Prot
W32/AdSpy.A
v6.4.7.1.166

F-Secure
Adware.Relevant.BA
11.2015-09-02_2

G Data
Adware.Relevant.BA
15.2.24

IKARUS anti.virus
Gen.AdWare.Heur
t3scan.1.8.5.0

K7 AntiVirus
Riskware
13.186.14254

Kaspersky
not-a-virus:Monitor.Win32.RK
14.0.0.2513

MicroWorld eScan
Adware.Relevant.BA
16.0.0.120

NANO AntiVirus
Trojan.Win32.Relevant.cxpnfu
0.28.6.63850

Norman
RelevantKnowledge.A
11.20150209

nProtect
Adware.Relevant.BA
14.12.05.01

Qihoo 360 Security
Win32/Virus.Monitor.29c
1.0.0.1015

Quick Heal
Monitor.RK.g8 (Not a Virus)
2.15.14.00

Sophos
RKnowledge Installer
4.98

Trend Micro House Call
TROJ_GEN.R02SC0EJM14
7.2.40

Trend Micro
TROJ_GEN.R02SC0EJM14
10.465.09

Vba32 AntiVirus
Signed-AdWare.Win32.Relevant
3.12.26.3

VIPRE Antivirus
Trojan.Win32.Generic
35508

File size:
2.1 MB (2,217,722 bytes)

Product version:
4.0.0.0

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:5aT8kZQERKgJHW6O/gqO9LQ1O42lp0+mbBcE7pinXBgJ:QT8oQEQOO/s9Lj42lpTggRgJ

Entry address:
0x9C40

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, E8, CD, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E8, CD...
 
[+]

Entropy:
7.9951

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
37 KB (37,888 bytes)

The file freeaquariumfishss.exe has been seen being distributed by the following 2 URLs.

http://free-aquarium-fish-screensaver.soft32.com/get/file/id/.../?no_download_manager=true

http://free-aquarium-fish-screensaver.soft32.com/get/file/id/.../

Remove freeaquariumfishss.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.