» sgmu.dll
Overview
Analysis
File Details
Programs (4)

sgmu.dll

sgmu

PINWID LTD

The module sgmu.dll by PINWID has been detected as adware by 4 anti-malware scanners. Additionally, the file is typically installed by a number of programs including Muvic Smartbar by Pinwid Ltd. and Snap.Do Engine by ReSoft Ltd., both potentially unwanted software.

File name:

sgmu.dll

Publisher:

PINWID LTD (signed and verified)

Product:

sgmu

Version:

1.0.0.0

MD5:

3968b0aaa83786228b42275f3ca9f6fc

SHA-1:

c358a4f405b58bb1b6d56655d7002f474610ed1e

SHA-256:

c11a27b3afcb5d29a2ccab4d31e6e9e7fd322d3b719a83f973724636dbf50615

Scanner detections:

4 / 68

Status:

Adware

Analysis date:

5/10/2024 11:12:30 AM UTC (today)

Scan engine

Detection

Engine version

AVG

Pindi

2015.0.3416

G Data

Win32.Application.Linkury

14.7.24

Reason Heuristics

PUP.PINWID.E

14.7.11.21

VIPRE Antivirus

Threat.4783962

29708

File size:

190 KB (194,592 bytes)

Product version:

1.0.0.0

Original file name:

sgmu.dll

File type:

Dynamic link library (Win32 DLL)

Language:

Language Neutral

Common path:

C:\users\{user}\appdata\local\smartbar\application\sgmu.dll

Digital Signature

Signed by:

PINWID LTD

Authority:

COMODO CA Limited

Valid from:

2/4/2014 4:00:00 PM

Valid to:

2/5/2015 3:59:59 PM

Subject:

CN=PINWID LTD, O=PINWID LTD, STREET=14 Shenkar Arie, L=HERZLIYA, S=NA, PostalCode=46733, C=IL

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00D9AC9FC9A1B1E8FD63013E3CCE7B0578

File PE Metadata

Compilation timestamp:

6/15/2014 7:23:23 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

6.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

3072:8l5K9YxAEX27yES9JA3h4GSEH61NgmiOl3HMBp0kbjdKbM1VSgf4AXq2Wd:8e9A27yES9JA3h4GSEH61Ngmtl3HMBpu

Entry address:

0x2F39A

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, F0, 02, 00, 0C, 00, 00, 00, 9C, 33, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.3679

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

181 KB (185,344 bytes)

The file sgmu.dll has been discovered within the following programs.

Muvic Smartbar by Pinwid Ltd.

This adware injects advertising in the user's Internet browser by running as an extension and/or add-on. Ads are delivered in the form of banners and text-links (roll-overs) as well as some popup ads.

www.browse-search.com/?

80% remove it

Muvic Smartbar Engine by Pinwid Ltd.

This adware program injects advertisements with its affiliate ad providers in order to serve a number of ad types including banner, inline text links and popups.

82% remove it

Snap.Do by ReSoft Ltd.

Snap.Do is a web browser addin/toolbar (depending on the browser it is installed within) that plugs into all the major web browsers including Internet Explorer, Chrome and Firefox. Snap.

snap.do

85% remove it

Snap.Do Engine by ReSoft Ltd.

Snap.

83% remove it

Remove sgmu.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.