» monitoringtool-3.2.1-607.exe
Overview
Analysis
File Details
Programs (1)

monitoringtool-3.2.1-607.exe

Compete Inc

The application monitoringtool-3.2.1-607.exe by Compete Inc has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This file is typically installed with the program Consumer Input (remove only) by Compete Inc. which is a potentially unwanted software program.

File name:

Publisher:

Compete Inc (signed and verified)

Version:

3.2.1.607

MD5:

0666e347c4588e908944a83b2f4765f1

SHA-1:

23d1097fca28d0cb583fc487085365f05e16182b

SHA-256:

8078206299df9825abdf9361d23915bc9813c14cdbbc96912553c0639b7fefdb

Scanner detections:

1 / 68

Status:

Potentially unwanted

Note:

Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:

4/16/2024 2:20:11 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Compete.Installer (M)

15.11.5.0

File size:

1.5 MB (1,552,592 bytes)

Product version:

3.2.1.607

File type:

Executable application (Win32 EXE)

Installer:

NSIS (Nullsoft Scriptable Install System)

Language:

Language Neutral

Common path:

C:\Program Files\consumer input\update\download\{b3f80db8-951f-4a2a-be2f-ed6f4ff63b98}\0.0.0.0\monitoringtool-3.2.1-607.exe

Digital Signature

Signed by:

Compete Inc

Authority:

VeriSign, Inc.

Valid from:

2/6/2012 7:00:00 PM

Valid to:

1/10/2015 6:59:59 PM

Subject:

CN=Compete Inc, OU=operations, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Compete Inc, L=Boston, S=Massachusetts, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

4A4ACAE072F8065D9C03E2A2240975B0

File PE Metadata

Compilation timestamp:

12/5/2009 5:53:24 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

24576:p8H/AX2Iag09jrqEz5Q5/BCerkfzdqe0mQZXq3/2mH2ppy5VtaE:WVf9CEz5K/4Skfzdqe5+X0kUVtaE

Entry address:

0x355E

Entry point:

81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, B8, A7, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 80, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 80, 40, 00, 53, FF, 15, 88, 82, 40, 00, 6A, 08, A3, 98, 10, 43, 00, E8, D6, 2E, 00, 00, A3, E4, 0F, 43, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, E8, A7, 42, 00, FF, 15, 58, 81, 40, 00, 68, AC, A7, 40, 00, 68, E0, 07, 43, 00, E8, DC, 29, 00, 00, FF, 15, AC, 80, 40, 00, BF, 00, 70, 43, 00, 50, 57, E8, CA, 29, 00, 00... 
[+]

Entropy:

7.9871

Packer / compiler:

Nullsoft install system v2.x

Code size:

25 KB (25,600 bytes)

The file monitoringtool-3.2.1-607.exe has been discovered within the following program.

Consumer Input (remove only) by Compete Inc.

Consumer Input is the collection and analytics software for Compete.com statistics for Microsoft Internet Explorer. Compete.com is a web traffic analysis service that publishes the approximate number of global visitors to the top web sites in the world.

www.consumerinput.com

61% remove it

Remove monitoringtool-3.2.1-607.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.