» idsecurebrowser.exe
Overview
Analysis
File Details

idsecurebrowser.exe

ID Secure Browser

Christina Mailat

The application idsecurebrowser.exe by Christina Mailat has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.

File name:

idsecurebrowser.exe

Publisher:

ID Security Suite (signed by Christina Mailat)

Product:

ID Secure Browser

Version:

3.5.0.0

MD5:

0b3ce21b46fb814fd9c069166f46301e

SHA-1:

b5fe3b7fb733b16ba406398661c9bc4a3e0fba2f

SHA-256:

b7e60e322abf84bf6c7260ba88863bbc5bc9c3d6e70b9550e873ac7614af9f87

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

4/19/2024 12:43:03 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Fastlink2.Installer.Optional (L)

16.9.11.23

File size:

873.7 KB (894,680 bytes)

Product version:

3.5.0.0

Original file name:

ID Secure Browser

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\id security suite\id secure browser\idsecurebrowser.exe

Digital Signature

Signed by:

Christina Mailat

Authority:

Thawte Consulting (Pty) Ltd.

Valid from:

3/26/2008 1:48:06 PM

Valid to:

3/26/2010 1:48:06 PM

Subject:

CN=Christina Mailat, OU=Fastlink2, O=Christina Mailat, L=Leverkusen, S=NRW, C=DE

Issuer:

CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:

4F994EA4A24BABD032D444472ED931A6

File PE Metadata

Compilation timestamp:

6/20/1992 12:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:f4A6ys2jIkF10RGACTVspQd1mMEm0GkpGrdXku28b:gksgj0RtCTipQdgMEmnMedXku2K

Entry address:

0x1000

Entry point:

68, 01, B0, 58, 00, E8, 01, 00, 00, 00, C3, C3, 1A, C3, EB, 71, 86, 5E, 44, 1A, D9, E3, AA, 93, 4A, 4C, 54, 1D, FB, 9E, 20, 45, 8C, E3, CB, D9, 57, E1, DD, AF, E8, 1A, C6, 96, E7, 76, 37, 5D, 79, D1, 6A, 23, EE, 32, 6C, F4, 0C, 1D, 8B, 85, 38, 81, D7, BC, 72, 5F, 84, 82, 8E, E1, D7, 0A, BA, 6C, D7, 25, 58, FE, 19, D7, 0B, 56, CD, 0A, 06, AB, 6B, 67, F3, 4A, B9, 9F, DD, C8, 27, C0, EB, 67, 84, 68, 11, E7, 78, 4C, F5, E3, C3, 5D, 6D, 4A, EB, 15, D1, B6, 7C, 37, DE, BF, 70, F0, A5, 50, 2E, 2F, 27, 5B, 89, 93... 
[+]

Entropy:

7.9399

Packer / compiler:

ASProtect v1.2x (New Strain)

Code size:

1 MB (1,060,864 bytes)

Remove idsecurebrowser.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.