home

isotousb_setup.exe

OutBrowse LTD

This is the OutBrowse Revenyou installer which bundles offers for additional third party applications that may be unwanted and installed without consent. The application isotousb_setup.exe by OutBrowse has been detected as adware by 21 anti-malware scanners. The program is a setup application that uses the OutBrowse Revenyou installer. This program installs potentially unwanted software on your PC at the same time as the software you are trying to install, without adequate consent.
Publisher:
OutBrowse LTD  (signed and verified)

MD5:
3b5cccc3cd199e0262cc11950a5afe68

SHA-1:
8dcc2a40047e3916c6522c98466fb5f50b1743e1

SHA-256:
710f8befbf26a4909fe50c1b7f0e6b1da6da82089cd6038cc49e3aa2125b3efd

Scanner detections:
21 / 68

Status:
Adware

Explanation:
Bundles additional adware offers during download and installation using the OutBrowse installer.

Description:
This is an installer which may bundle legitimate applications with offers for additional 3rd-party applications that may be unwanted by the user. While the installer contains an 'opt-out' feature this is not set be defult and is usually overlooked.

Analysis date:
4/24/2024 11:01:22 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Application.Bundler.Outbrowse.F
852

Agnitum Outpost
PUA.OutBrowse
7.1.1

Avira AntiVirus
APPL/Downloader.Gen
7.11.161.52

AVG
Generic
2015.0.3330

Bitdefender
Application.Bundler.Outbrowse.F
1.0.20.1395

Bkav FE
W32.Cloda31.Trojan
1.3.0.4959

Dr.Web
Adware.Downware.1336
9.0.1.0279

ESET NOD32
Win32/OutBrowse (variant)
8.10106

F-Secure
Application.Bundler.Outbrowse
11.2014-06-10_2

G Data
Application.Bundler.Outbrowse
14.10.24

K7 AntiVirus
Unwanted-Program
13.180.12747

Kaspersky
not-a-virus:Downloader.Win32.Agent
14.0.0.3144

Malwarebytes
PUP.Optional.OutBrowse
v2014.10.06.04

McAfee
Artemis!3B5CCCC3CD19
5600.6986

MicroWorld eScan
Application.Bundler.Outbrowse.F
15.0.0.837

NANO AntiVirus
Riskware.Win32.Downware.dccolm
0.28.2.60881

Panda Antivirus
Trj/NsisDownloader.A
14.10.06.04

Quick Heal
TrojanDownloader.NSIS.OutBrowse.B
10.14.14.00

Reason Heuristics
PUP.Installer.OutBrowse.O
14.10.6.4

Sophos
OutBrowse Revenyou
4.98

Vba32 AntiVirus
Downloader.OutBrowse
3.12.26.3

File size:
611.6 KB (626,296 bytes)

File type:
Executable application (Win32 EXE)

Bundler/Installer:
OutBrowse Revenyou (using Nullsoft Install System)

Common path:
C:\users\{user}\downloads\isotousb_setup.exe

Digital Signature
Signed by:
OutBrowse LTD

Authority:
Symantec Corporation

Valid from:
2/26/2013 1:00:00 AM

Valid to:
2/27/2014 12:59:59 AM

Subject:
CN=OutBrowse LTD, O=OutBrowse LTD, L=Ramat Gan, S=Ramat Gan, C=IL, SERIALNUMBER=514686914, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.3=IL

Issuer:
CN=Symantec Class 3 Extended Validation Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
06C1C2AE3E180ADDA27BBF2BD8EAC0E7

File PE Metadata
Compilation timestamp:
12/5/2009 11:50:52 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:K7vNHNrhLEfczFNjk05ZBmNyYGEYTSfx7YaQRhimr:KpphEy3mNYEYKJQRhim

Entry address:
0x30FA

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 18, EC, 42, 00, E8, F1, 2B, 00, 00, A3, 64, EB, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 98, 8F, 42, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 60, E3, 42, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 40, 43, 00, 50, 57, E8, 92, 28, 00, 00...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
23.5 KB (24,064 bytes)

Remove isotousb_setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.