home

imanager.exe

Sowsoft LLC

The application imanager.exe by Sowsoft has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program Instant Document Search 1.12.1 by SOW. The installer uses the InstallMonetizer platform which will donwload and install adware toolbars and other potentially unwanted software offers during setup.
Publisher:
Sowsoft LLC  (signed and verified)

MD5:
cc9a5322cf05175c295fdc5442bf4142

SHA-1:
296c2c4a9b7c4686b8b2a1a8bc5033484ea448a2

Scanner detections:
1 / 68

Status:
Potentially unwanted

Explanation:
Uses the InstallMonetizer distribution platform to bundle adware.

Analysis date:
4/20/2024 12:09:10 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.InstallMonetizer (M)
16.4.29.0

File size:
1.1 MB (1,101,240 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\ids\imanager.exe

Digital Signature
Signed by:
Sowsoft LLC

Authority:
The USERTRUST Network

Valid from:
3/22/2009 8:00:00 PM

Valid to:
3/23/2011 7:59:59 PM

Subject:
CN=Sowsoft LLC, O=Sowsoft LLC, STREET="Prospect Mira, d. 75, str. 1", L=Moscow, S=Moscow, PostalCode=129110, C=RU

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
042E3AD215DF337FD2A69CD2F3F9111B

File PE Metadata
Compilation timestamp:
6/19/1992 6:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:EmFUM7bzRAy+BpLeDk6Td6tTA+pNIO1ZtseMfpHkAMqaOrX:BK0pvYEAJ10DMo

Entry address:
0xB88DC

Entry point:
55, 8B, EC, 83, C4, E4, 53, 56, 57, 33, C0, 89, 45, E4, 89, 45, E8, 89, 45, EC, B8, BC, 72, 4B, 00, E8, 1E, E2, F4, FF, 8B, 3D, 94, EC, 4E, 00, 33, C0, 55, 68, BB, 8A, 4B, 00, 64, FF, 30, 64, 89, 20, 8D, 45, EC, E8, B2, 4D, FB, FF, 8B, 45, EC, E8, 96, 0C, F5, FF, E8, D5, A7, F4, FF, 85, C0, 7E, 44, 8D, 55, E8, B8, 01, 00, 00, 00, E8, 24, A8, F4, FF, 8B, 45, E8, BA, D4, 8A, 4B, 00, E8, B7, C4, F4, FF, 74, 05, E8, 60, E7, FF, FF, 8D, 55, E4, B8, 01, 00, 00, 00, E8, 03, A8, F4, FF, 8B, 45, E4, BA, E0, 8A, 4B...
 
[+]

Entropy:
6.8206

Developed / compiled with:
Microsoft Visual C++

Code size:
733 KB (750,592 bytes)

The file imanager.exe has been discovered within the following program.

Instant Document Search 1.12.1  by SOW
www.sowsoft.com
About 3% of users remove it
 
Powered by Should I Remove It?

Remove imanager.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.