home

OMGPrivacyShieldSetup.exe

OMG Privacy Shield

Vast Tech Support

The application OMGPrivacyShieldSetup.exe, “This installer database contains the logic and data required to install OMG Privacy Shield.” by Vast Tech Support has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup and installation application and has been known to bundle potentially unwanted software.
Publisher:
OMG  (signed by Vast Tech Support)

Product:
OMG Privacy Shield

Description:
This installer database contains the logic and data required to install OMG Privacy Shield.

Version:
2.2.7

MD5:
4e52edddc6778090d7bf7646d19a3e15

SHA-1:
24bd9e92f6a4c794d0c146ec5e35e7cb62e1b68b

SHA-256:
20b7a2a43ee85d4ec410ca4905549053f93ad79fdb096cf15b9d57901e07b733

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
4/25/2024 5:44:12 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.VastTech.Installer (M)
16.4.29.7

File size:
4.4 MB (4,581,336 bytes)

Product version:
2.2.7

Copyright:
Copyright (C) 2014 OMG

Original file name:
OMGPrivacyShieldSetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\ProgramData\omg\omg privacy shield\updates\227\omgprivacyshieldsetup.exe

Digital Signature
Signed by:
Vast Tech Support

Authority:
Thawte, Inc.

Valid from:
5/23/2013 8:00:00 PM

Valid to:
5/24/2015 7:59:59 PM

Subject:
CN=Vast Tech Support, O=Vast Tech Support, L=Delray Beach, S=Florida, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
074DFF23E064F33AB5EC78F8BEB7D2F2

File PE Metadata
Compilation timestamp:
8/12/2014 9:30:15 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
98304:XqKMgb6ViwLMX8bogM5MHUVV/T+4OZIz8vSZqtl1TkaDPE:3XmAMb25so/C4/5wl3DM

Entry address:
0xC875C

Entry point:
E8, 47, CC, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 51, 53, 56, 8B, F0, 33, DB, 3B, F3, 75, 1E, E8, 5D, 4E, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, C5, D5, FF, FF, 83, C4, 14, 8B, C6, E9, C2, 00, 00, 00, 57, 39, 5D, 0C, 77, 1E, E8, 39, 4E, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, A1, D5, FF, FF, 83, C4, 14, 8B, C6, E9, 9D, 00, 00, 00, 33, C0, 39, 5D, 14, 66, 89, 06, 0F, 95, C0, 40, 39, 45, 0C, 77, 09, E8, 0A, 4E, 00, 00, 6A, 22, EB, CF, 8B, 45, 10, 83, C0, FE, 83, F8, 22, 77...
 
[+]

Entropy:
7.6536

Code size:
1021.5 KB (1,046,016 bytes)

Remove OMGPrivacyShieldSetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.