home

hqcinema pro 2.1v28.01-bg.exe

HQCinema Pro 2.1V28.01

ColoColo Apps (Bright Circle Investments Ltd)

This adware is a web browser extension that will inject advertising in the browser in the form of unwanted banners and text-links which may link to malware sites and install unwanted software. The application hqcinema pro 2.1v28.01-bg.exe, “HQCinema Pro 2.1V28.01 exe” by ColoColo Apps (Bright Circle Investments) has been detected as adware by 8 anti-malware scanners. Part of the Corssrider web browser platform, the BG executable is a background process that manage various function of the installed extensions in user's browser including managing installation, updates and remote code downloads. It is distributed as part of the Brightcircle group of browser-extensions.
Publisher:
HQ CinemaV28.01  (signed by ColoColo Apps (Bright Circle Investments Ltd))

Product:
HQCinema Pro 2.1V28.01

Description:
HQCinema Pro 2.1V28.01 exe

Version:
1000.1000.1000.1000

MD5:
03814666d2d3bc741d78d43fcdff8831

SHA-1:
c942e7c60762f54fa06e1e5e82dff88a5cd2f301

SHA-256:
44251a8f15a396342d3a85df439eeb1b7ec6e2febd9303004998f69818f90777

Scanner detections:
8 / 68

Status:
Adware

Explanation:
The software may change the browser's home page and search provider settings as well as display advertisements. Distributed through the Brightcircle investments brand.

Note:
Crossrider is the owner of a platform that enables the creation of cross-browser extensions by developers but is not the owner of this detected application. The owner/publisher of this file is ColoColo Apps (Bright Circle Investments Ltd).

Analysis date:
4/27/2024 3:30:04 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
ADWARE/CrossRider.Gen4
7.11.205.178

ESET NOD32
Win32/Toolbar.CrossRider.BA potentially unwanted application
7.0.302.0

Malwarebytes
PUP.Optional.CrossRider.A
v2015.01.28.12

NANO AntiVirus
Trojan.Win32.Crossrider1.dmigzt
0.30.0.65070

Panda Antivirus
Trj/Genetic.gen
15.01.28.12

Reason Heuristics
Adware.Crossrider.Brightcircle
15.2.10.11

Rising Antivirus
PE:Malware.Obscure!1.9C59
23.00.65.15126

VIPRE Antivirus
Threat.4789396
36694

File size:
623.5 KB (638,424 bytes)

Product version:
1000.1000.1000.1000

Copyright:
Copyright 2011

Original file name:
HQCinema Pro 2.1V28.01.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\hqcinema pro 2.1v28.01\hqcinema pro 2.1v28.01-bg.exe

Digital Signature
Signed by:
ColoColo Apps (Bright Circle Investments Ltd)

Authority:
COMODO CA Limited

Valid from:
12/16/2014 1:00:00 AM

Valid to:
12/17/2015 12:59:59 AM

Subject:
CN=ColoColo Apps (Bright Circle Investments Ltd), O=ColoColo Apps (Bright Circle Investments Ltd), STREET=Athinodorou 3, STREET=Dasoupoli Strovolos, L=Nicosia, S=Nicosia, PostalCode=2025, C=CY

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00D815C7CD687694A6F4119A3535D31D7A

File PE Metadata
Compilation timestamp:
1/28/2015 12:07:43 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
12288:sExQOuKzhnB/HZrOGg40YsE7Aqg9JFaTlqQ:sExVzZrLgIX+78T/

Entry address:
0x55855

Entry point:
E8, A2, C7, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, 00, 51, 49, 00, E8, 55, 49, 00, 00, E8, C9, 1C, 00, 00, 0F, B7, F0, 6A, 02, E8, 35, C7, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, 25, 4F, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8...
 
[+]

Entropy:
6.4677

Code size:
494 KB (505,856 bytes)

Remove hqcinema pro 2.1v28.01-bg.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.