home

MySmartTabs.dll

My Smart Tabs Extension

Sevas-S LLC

The module MySmartTabs.dll, “Forget about the blank new tab! Smart Tabs brings the most personalized launchpad to the sites you use the most visited, recently closed tabs, suggested sites and more.” by Sevas-S has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Sevas-S LLC  (signed and verified)

Product:
My Smart Tabs Extension

Description:
Forget about the blank new tab! Smart Tabs brings the most personalized launchpad to the sites you use the most visited, recently closed tabs, suggested sites and more.

Version:
1.0.0.1

MD5:
3b452cceb2e74c7ae86f1bd58c50b2e8

SHA-1:
64f642f6d85c4675e092d24872dbfec972765aa5

SHA-256:
8845bb2cddea51b59e422512079ff3225bbe1fcf87edda5087cd4c24fbcaf4ad

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
4/25/2024 12:44:21 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.SevasS (M)
16.1.17.19

File size:
130.3 KB (133,440 bytes)

Product version:
1.0.0.1

Original file name:
MySmartTabs.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\sevas-s\my smart tabs\browserextensions\ie\mysmarttabs.dll

Digital Signature
Signed by:
Sevas-S LLC

Authority:
VeriSign, Inc.

Valid from:
1/23/2012 8:00:00 AM

Valid to:
1/23/2013 7:59:59 AM

Subject:
CN=Sevas-S LLC, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Sevas-S LLC, L=Kyiv, S=Kyivska oblast, C=UA

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6B59CDE153F9D6B8052599E505477C19

File PE Metadata
Compilation timestamp:
5/3/2012 9:41:49 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
1536:VovoTuIzqHBep6S9S2PCGtn2N8RpM2zfGA2+VGAbMNl2kgMwEo25Y5CEklI:xzqHop6aS2qxuMqf/VGZl6MwEz5Y5CdK

Entry address:
0xB94E

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, A3, 66, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, CC, CC, 68, E0, 9F, 00, 10, 64, FF, 35, 00, 00, 00, 00, 8B, 44, 24, 10, 89, 6C, 24, 10, 8D, 6C, 24, 10, 2B, E0, 53, 56, 57, A1, CC, C4, 01, 10, 31, 45, FC, 33, C5, 50, 89, 65, E8, FF, 75, F8, 8B, 45, FC, C7, 45, FC, FE, FF, FF, FF, 89, 45, F8, 8D, 45, F0, 64, A3, 00, 00, 00, 00, C3, 8B, 4D, F0, 64, 89, 0D, 00, 00, 00, 00, 59, 5F, 5F, 5E, 5B, 8B, E5, 5D, 51, C3, CC...
 
[+]

Entropy:
6.4583

Code size:
84 KB (86,016 bytes)

Remove MySmartTabs.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.