home

redple

Publisher Information

redple is a software publisher located in SEOUL, Gyeonggi-Do in Korea*. Thre are 2 additional code signing certificates issued to this publisher.
Authority:
Thawte, Inc.

Valid from:
6/9/2011 9:00:00 AM

Valid to:
7/9/2012 8:59:59 AM

Subject:
CN=redple, O=redple, L=SEOUL, S=GYEONGGI-DO, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
5d6354ab4a1ccfb51cce9fb3da2d595c

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP, PUP.redple (M), PUP.redple.Installer (M), PUP (M)
88.89%

Trend Micro House Call
TROJ_GEN.RCBZ1JS, TROJ_GEN.F47V0723, TROJ_GEN.F47V1202
16.67%

Comodo Security
UnclassifiedMalware
16.67%

Avira AntiVirus
TR/Rogue.8024417, TR/Gendal.206016, ADWARE/Kraddare.306800
16.67%

ESET NOD32
probably unknown NewHeur_PE, Win32/Adware.Kraddare.GH (variant)
16.67%

McAfee
Artemis!3FC3CEEF959B, Artemis!F9517EA444AA
11.11%

K7 AntiVirus
Trojan, Trojan
11.11%

avast!
Win32:PUP-gen [PUP], Win32:Adware-CNB [PUP]
11.11%

Dr.Web
Trojan.PWS.Kpo.70, Trojan.Adkor.83
11.11%

Bkav FE
W32.Clodb9e.Trojan
5.56%

1 / 68      (Malware)
multicodecup.exe (multicodec update by redple)  (fc7018fbf34badeb64cacf72dfc611fa)

1 / 68      (Malware)
multicodecsetup.exe (multicodec by redple)  (0241e2c912948240974603c4481d7f03)

1 / 68      (Malware)
multicodecband.dll (multicodecband.dll by REDPLE)  (472723f0d887b9af5dce9805fd0b10ec)

1 / 68      (Malware)
MultiCodecopen.exe (MultiCodec by redple)  (00ebaef0387b7f7aac65bcb1589c63c5)

1 / 68      (Malware)
multicodecband.dll (multicodecband.dll by REDPLE)  (dddb894f40613badff5046932bcf4b62)

1 / 68      (Malware)
MultiCodecopen.exe (MultiCodec by redple)  (b0e222182fe6e3eebf74e8c5227fd6ea)

1 / 68      (Malware)
multidownload_.exe (Multidownload by redple)  (142723e17cdedbfde1f4b65b08994f92)

1 / 68      (Malware)
a.dll (multicodecband.dll by REDPLE)  (53353439777369be82c02dce597f0f05)

1 / 68      (PUP)
powerpcsetup_filedown.exe (by redple)  (ee9b145f6c2fad4cd96be879b988d90f)

1 / 68      (PUP)
MultiCodecopen.exe (MultiCodec by redple)  (87362515def89d09927d5fc23d789406)

1 / 68      (PUP)
hka.dll (hka.dll by redple)  (9509afb8b34b5d68faea57f8f415cf0c)

1 / 68      (PUP)
a.dll (multicodecband.dll by REDPLE)  (ee42664d1b49169ec83bdb6571434bbf)

7 / 68      (PUP)
multicodecup.exe (multicodec update by redple)  (f9517ea444aa5e777a3762dbc126816a)

3 / 68      (PUP)
MultiCodecopen.exe (MultiCodec by redple)  (83119d40d6e4bd8be013fab4f5525c7f)

1 / 68      (PUP)
multicodecband.dll (multicodecband.dll by REDPLE)  (53459bf5a23b849bd5ceffbcd05f15a0)

1 / 68      (PUP)
hka.dll (hka.dll by redple)  (d3409d5ba88d286d1f8d94533f1f6853)

5 / 68      (Malware)
powerpcsetup_fileget.exe (by redple)  (88e1aa6e60da0587388d04e49a36881e)

20 / 68    (PUP)
MultiDownloadInstall.exe (by redple)  (3fc3ceef959b901a126ee825dfb09c70)

Downloads URLs for files signed by redple.

20 / 68    (PUP)
http://down.multidownload.co.kr/.../MultiDownloadInstall.exe  (3fc3ceef959b901a126ee825dfb09c70)

The following websites host and distribute files published by redple.

down.multidownload.co.kr

The certificates below are also signed by redple.

2753DC079C467EDDB3E2DA78A3F1219C  (May 12, 2010 to Jun 12, 2011)

3337EE85FD2D60CCDC03FD2C1811AE0F  (May 06, 2009 to May 07, 2010)

The following publishers (by Authenticode signature organization name) are related.

(주)네오유엑스

(주)네오유엑스

* Note, the details and description above are based on the code signing digital signature issued to redple by Thawte, Inc. on June 09, 2011 with the serial number '5d6354ab4a1ccfb51cce9fb3da2d595c'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.