home

Bit Cocktail Ltd.

Publisher Information

Bit Cocktail Ltd. is a software developer located in Herzeliya, Israel*. The publisher primarily developes software that can be classified as adware. There is one additional code signing certificate issued to this publisher.
Authority:
Thawte, Inc.

Valid from:
11/12/2012 1:00:00 AM

Valid to:
1/17/2014 12:59:59 AM

Subject:
CN=Bit Cocktail Ltd., O=Bit Cocktail Ltd., L=Herzeliya, S=Herzeliya, C=IL

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
2ff74ed2afebafd72e0750e98dc63c1c

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.BitCocktail (M), PUP.BitCocktail.Installer (M), PUP.BitCocktail.Bitcokta (M), PUP.BitCocktail.Bitcokta.Installer (M), PUP.BitCocktail.SweetPac.Installer (M), PUP.BitCocktail.IncrediB.Installer (M), PUP.BitCocktail.Smilebox.Installer (M)
100.00%

Dr.Web
Adware.Shopper.919, is riskware program Program.SysTreak.6
4.00%

VIPRE Antivirus
Threat.5224869
2.00%

ESET NOD32
Win32/Toolbar.BitCocktail.B potentially unwanted application
2.00%

1 / 68      (PUP)
extensionupdaterservice.exe  (cedb27baca286f063c3a11d44af530ae)

1 / 68      (PUP)
coolpic_mg_29116755.exe (by Bitcoktail)  (9a5a34673d2ab931f7c267567d2d6e62)

1 / 68      (PUP)
tmp000000015d7d7328466cca1b  (e40755929b6ddac445137759d194318e)

1 / 68      (PUP)
coolpic_mg_27569333.exe (by Bitcoktail)  (f7013cb346bc874643d9b1ee598fe1a0)

1 / 68      (PUP)
tmp00000436b0dd876aea8a4780  (4b229db420baebcc38ef472ae4b243ea)

1 / 68      (PUP)
extensionupdate.exe (IB Updater by IncrediBar)  (ab2b5a3f92c7ded0d30a4b668a2729e1)

1 / 68      (PUP)
extensionupdaterservice.exe  (78a13f566238a3112573743752fe589f)

1 / 68      (PUP)
extensionupdaterservice.exe  (149304618ad1f9bb55811779e4467bc3)

1 / 68      (PUP)
extensionupdate.exe (IB Updater by IncrediBar)  (61ada63abfd8d2b4be965346072a951e)

1 / 68      (PUP)
extensionupdaterservice.exe  (49f95a23ef82f24417770952476b843e)

1 / 68      (PUP)
extensionupdaterservice.exe  (2e61503cbfec0d6c81dfaf1337930d22)

1 / 68      (PUP)
tmp00000001b17c22aeee39008c  (3e57a479458dde5f29c6786cf27de5e2)

1 / 68      (PUP)
extensionupdaterservice.exe  (5d5bdc56d21ac34cee9e7246973b85df)

1 / 68      (PUP)
extensionupdaterservice.exe  (2e61503cbfec0d6c81dfaf1337930d22)

1 / 68      (PUP)
coolpic_mg_30589768.exe (by Bitcoktail)  (b96e9aec47590a003713358a01b8580d)

1 / 68      (PUP)
playzy_home.exe (by Bitcocktail)  (3f4fba5cccb01b56f182aa6af56874a1)

1 / 68      (PUP)
extension64.dll  (5d76846c7de855eb828e288c2e4acd4a)

1 / 68      (PUP)
extension32.dll  (101ce194d279473a63267e07c8e430c6)

1 / 68      (PUP)
installerhelper.dll  (72ca329d446f2b575702fd7a8dd3171d)

1 / 68      (PUP)
extensionupdaterservice.exe  (1831fc41b62f526513b8b6a417482952)

1 / 68      (PUP)
extension64.dll  (e4088dce0f243be017528c268e8a3330)

1 / 68      (PUP)
coolpic_mg_30213112.exe (by Bitcoktail)  (1a594281abf31b69a9ba92395ff00b7c)

1 / 68      (PUP)
extensionupdaterservice.exe  (e6a6b6c684e5833fa63b3e9f2e7a30a5)

1 / 68      (PUP)
extensionupdate.exe (IB Updater by IncrediBar)  (8b7a35cfb8d4ecaf16f2187dae61fe1e)

1 / 68      (PUP)
extensionupdate.exe (Web Assistant by IncrediBar)  (d5446fb7a3c8cd892e14ca7e40be42c2)

1 / 68      (PUP)
installerhelper.dll  (8f20ce9be1ff47971782713cee96cac6)

1 / 68      (PUP)
extension64.dll  (b30d2639c6bc81bf0487a1183c0da6e4)

1 / 68      (PUP)
sboxbing_717_active.exe (Updater By Smilebox by Smilebox)  (3b75da2a094da0641d9b8bfe64845828)

1 / 68      (PUP)
extension32.dll  (9cea0e0ff2b3389c7ca721fc6294a47c)

1 / 68      (PUP)
extensionupdaterservice.exe  (3ebbb3d908eab3ba0ea40328919fc6d5)

 
Latest 30 of 303 files

The following certificate is also signed by Bit Cocktail Ltd..

613E461899A05578474D1423CF9CC340  (Jan 16, 2012 to Jan 16, 2013)

* Note, the details and description above are based on the code signing digital signature issued to Bit Cocktail Ltd. by Thawte, Inc. on November 12, 2012 with the serial number '2ff74ed2afebafd72e0750e98dc63c1c'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.