home

lotpro32.exe

Lotto Pro

Data Solutions

The application lotpro32.exe, “This installer database contains the logic and data required to install Lotto Pro.” by Data Solutions has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup and installation application and has been known to bundle potentially unwanted software. It uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions.
Publisher:
Data Solutions  (signed and verified)

Product:
Lotto Pro

Description:
This installer database contains the logic and data required to install Lotto Pro.

Version:
7.93.0

MD5:
94565b54a909d3910eaf2be2e93a162e

SHA-1:
e5b516f4420361dde8c2bc166628840a851517a5

SHA-256:
09ebcf9b2a18eeb59e4d9f8fd761ad44ad3942c26c6365550c93e0acc86764c7

Scanner detections:
1 / 68

Status:
Potentially unwanted

Explanation:
Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Analysis date:
4/19/2024 4:50:35 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.InstallCore (M)
16.12.12.18

File size:
7.7 MB (8,123,520 bytes)

Product version:
7.93.0

Copyright:
Copyright (C) Data Solutions

Original file name:
lotpro32.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\lotpro32.exe

Digital Signature
Signed by:
Data Solutions

Authority:
DigiCert Inc

Valid from:
1/16/2013 8:00:00 PM

Valid to:
1/22/2014 8:00:00 AM

Subject:
CN=Data Solutions, O=Data Solutions, L=Polk City, S=Florida, C=US

Issuer:
CN=DigiCert Assured ID Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0E5B8108D21D4A0D71758624A73E850F

File PE Metadata
Compilation timestamp:
10/18/2012 5:59:11 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
196608:lbr5YUrytzXUTqVmRbEO+5tNro7VeBGzTlb8L7umXgIlECa+qXYEF:V5hryua2L+5tBo7VOGZbOumQIR3qXFF

Entry address:
0x2F21E

Entry point:
E8, 29, 9F, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 55, 08, 53, 56, 57, 33, FF, 3B, D7, 74, 07, 8B, 5D, 0C, 3B, DF, 77, 1E, E8, 81, 3A, 00, 00, 6A, 16, 5E, 89, 30, 57, 57, 57, 57, 57, E8, 0A, 3A, 00, 00, 83, C4, 14, 8B, C6, 5F, 5E, 5B, 5D, C3, 8B, 75, 10, 3B, F7, 75, 07, 33, C0, 66, 89, 02, EB, D4, 8B, CA, 0F, B7, 06, 66, 89, 01, 41, 41, 46, 46, 66, 3B, C7, 74, 03, 4B, 75, EE, 33, C0, 3B, DF, 75, D3, 66, 89, 02, E8, 38, 3A, 00, 00, 6A, 22, 59, 89, 08, 8B, F1, EB, B3, 8B, FF, 55, 8B, EC, 83, EC...
 
[+]

Entropy:
7.9798  (probably packed)

Code size:
267.5 KB (273,920 bytes)

Remove lotpro32.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.