» postak-ie-3.0.0.exe
Overview
Analysis
File Details
Programs (1)
Downloads (1)

postak-ie-3.0.0.exe

Seznam.cz, a.s.

The application postak-ie-3.0.0.exe by Seznam.cz, a.s has been detected as a potentially unwanted program by 3 anti-malware scanners. The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This file is typically installed with the program Seznam Software by Seznam.cz which is a potentially unwanted software program. The file has been seen being downloaded from download.seznam.cz.

File name:

postak-ie-3.0.0.exe

Publisher:

Seznam.cz, a.s. (signed and verified)

MD5:

8eaa5fbf05e92030a375da546efec2f8

SHA-1:

9847440e59f88f902edea43cbcd0604b41127170

SHA-256:

2d412bd2c1250a1a37201c1d599aac8298167dbd48d15da324a869a69b1ad40f

Scanner detections:

3 / 68

Status:

Potentially unwanted

Analysis date:

4/24/2024 1:19:59 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Seznam (M)

16.10.19.12

Trend Micro House Call

PAK_Generic.005

7.2.122

Trend Micro

PAK_Generic.005

10.465.02

File size:

7.4 MB (7,737,408 bytes)

File type:

Executable application (Win32 EXE)

Installer:

NSIS (Nullsoft Scriptable Install System)

Common path:

C:\users\{user}\downloads\postak-ie-3.0.0.exe

Digital Signature

Signed by:

Seznam.cz, a.s.

Authority:

Thawte, Inc.

Valid from:

4/10/2013 2:00:00 AM

Valid to:

4/11/2014 1:59:59 AM

Subject:

CN="Seznam.cz, a.s.", O="Seznam.cz, a.s.", L=Praha 5, S=Praha 5, C=CZ

Issuer:

CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:

3C0F1ED2D0420BEE86C6856A3F0A4144

File PE Metadata

Compilation timestamp:

12/5/2009 11:50:52 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

196608:4sDRLu335k7sXSM4foX9v14kodBxDN7FhZ8N1f4qmF:4s9Lu3u7ZQkd7FMR2F

Entry address:

0x30FA

Entry point:

81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 18, EC, 42, 00, E8, F1, 2B, 00, 00, A3, 64, EB, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 98, 8F, 42, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 60, E3, 42, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 40, 43, 00, 50, 57, E8, 92, 28, 00, 00... 
[+]

Packer / compiler:

Nullsoft install system v2.x

Code size:

23.5 KB (24,064 bytes)

The file postak-ie-3.0.0.exe has been discovered within the following program.

Seznam Software by Seznam.cz

Seznam Software is a download manager the bundles various offers including web browser toolbars and exentions as well as various other potentially unwanted software programs. It wraps various 3rd party softwre from the download site software.seznam.

software.seznam.cz

65% remove it

The file postak-ie-3.0.0.exe has been seen being distributed by the following URL.

http://download.seznam.cz/.../postak-ie-3.0.0.exe

Remove postak-ie-3.0.0.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.