» newfolderremovaltool.exe
Overview
Analysis
File Details
Programs (1)

newfolderremovaltool.exe

Security Stronghold LLC

The application newfolderremovaltool.exe by Security Stronghold has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program Babylon Client Removal Tool by Security Stronghold which is a potentially unwanted software program.

File name:

Publisher:

Security Stronghold LLC (signed and verified)

Version:

1.0.0.0

MD5:

d5e6661ae1deb41748f9d94b3eb77127

SHA-1:

cb096126264b1cbf262ec5a2824be1d95b8c7bf2

SHA-256:

49c17b4110c419edaa5d47084dc9b29f270faa7d0554aae30604f5a8eaff2470

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

4/18/2024 5:02:01 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

Win32.Generic

17.2.21.9

File size:

5.2 MB (5,446,584 bytes)

Product version:

1.0.0.0

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\new folder removal tool\newfolderremovaltool.exe

Digital Signature

Signed by:

Security Stronghold LLC

Authority:

GlobalSign nv-sa

Valid from:

10/10/2011 12:49:57 PM

Valid to:

10/10/2012 12:49:57 PM

Subject:

E=manager@securitystronghold.com, CN=Security Stronghold LLC, O=Security Stronghold LLC, L=Astrakhan, S=Astrakhan region, C=RU

Issuer:

CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:

112178C42A18008AB27616B3F5140692C337

File PE Metadata

Compilation timestamp:

8/8/2012 12:32:37 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0x399BB4

Entry point:

55, 8B, EC, B9, 0A, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 51, 53, 56, B8, 04, A0, 78, 00, E8, 2C, 23, C7, FF, 8B, 35, 7C, EA, 7C, 00, 33, C0, 55, 68, CA, 9D, 79, 00, 64, FF, 30, 64, 89, 20, 8D, 55, E4, 33, C0, E8, 7E, AF, C6, FF, 8B, 45, E4, 8D, 55, E8, E8, 7B, 9C, C8, FF, 8B, 45, E8, 8D, 4D, EC, 33, D2, E8, 7A, 9A, C8, FF, 8B, 55, EC, 8B, C6, E8, FC, E0, C6, FF, BB, 02, 00, 00, 00, 8D, 45, DC, 8B, 16, 0F, B7, 54, 5A, FC, E8, 40, EC, C6, FF, 8B, 45, DC, 8D, 55, E0, E8, 21, 7C, C8, FF, 8B, 45, E0, 50, 8D... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

3.6 MB (3,770,880 bytes)

The file newfolderremovaltool.exe has been discovered within the following program.

Babylon Client Removal Tool by Security Stronghold

During installation, the Security Stronghold Removal Tool utility will provide various bundled applications including RegClean Pro registry cleaner. It will then download utilities from its server and scan the user's PC.

www.SecurityStronghold.com

73% remove it

Remove newfolderremovaltool.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.