» merriam webster thesaurus all.exe
Overview
Analysis
File Details

merriam webster thesaurus all.exe

Babylon Ltd.

This is part of the Babylon web browser toolbar and extension that will modify the browser's default search provider, DNS, and home page functions. The application merriam webster thesaurus all.exe by Babylon has been detected as adware by 2 anti-malware scanners. This will display context specific advertisements in the browser as well as attempt to modify the browser's search provider.

File name:

Publisher:

Babylon Ltd. (signed and verified)

MD5:

786755f7eac971f11dfb86b12b68b7f5

SHA-1:

4d738e0484da80abc05252cd9c24d58c50aaf601

SHA-256:

bf1df853a28fa4900e97cff66444190022e1b7dc253f01bc5378d9955dc557a9

Scanner detections:

2 / 68

Status:

Adware

Analysis date:

4/25/2024 8:13:20 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Babylon (M)

15.7.28.20

Vba32 AntiVirus

suspected of Trojan.Downloader.gen.h

3.12.26.3

File size:

37.5 MB (39,321,272 bytes)

File type:

Executable application (Win32 EXE)

Digital Signature

Signed by:

Babylon Ltd.

Authority:

Thawte Consulting (Pty) Ltd.

Valid from:

2/12/2006 6:00:00 PM

Valid to:

2/27/2007 5:59:59 PM

Subject:

CN=Babylon Ltd., OU=SECURE APPLICATION DEVELOPMENT, O=Babylon Ltd., L=Or-Yehuda, S=Or-Yehuda, C=IL

Issuer:

CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:

1271E01D90B147DCF80E63DAC35146A7

File PE Metadata

Compilation timestamp:

1/7/2005 10:37:41 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

786432:3k4q+46fdSpfy9ZZdgQCIKefJTlZHdxA1mgkPzcH7TqUWir0BpiHS+3TLxx:USNVify1C+TlZHdxA1mDPoHnyiQ0Dj

Entry address:

0x3E1C

Entry point:

83, EC, 20, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 92, 40, 00, C6, 44, 24, 14, 20, FF, 15, 28, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 68, 54, 92, 40, 00, 68, 20, E8, 42, 00, A3, D0, F0, 42, 00, E8, 72, 2A, 00, 00, BE, 00, 64, 43, 00, BF, 00, 04, 00, 00, 56, 57, FF, 15, C4, 70, 40, 00, E8, 7A, FF, FF, FF, 8B, 2D, 8C, 70, 40, 00, 85, C0, 75, 21, 68, FB, 03, 00, 00, 56, FF, 15, C0, 70, 40, 00, 68, 4C, 92, 40, 00, 56, FF, D5, E8, 57, FF, FF, FF, 85, C0, 0F, 84, 47, 01, 00, 00, BE, 00, 50... 
[+]

Entropy:

7.9996 (probably packed)

Code size:

23 KB (23,552 bytes)

Remove merriam webster thesaurus all.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.