» simpson_tapped_out_hack_tool.exe
Overview
Analysis
File Details
Downloads (1)

simpson_tapped_out_hack_tool.exe

System Applet

This is published and distributed via an Adknowledge's advertising supported (adware) software installer. The application simpson_tapped_out_hack_tool.exe, “System Applet ” by System Applet has been detected as adware by 31 anti-malware scanners.

File name:

Publisher:

System Applet (signed by System Applet)

Product:

System Applet

Description:

System Applet

Version:

2.4.8.1

MD5:

0514a8abd6d4876c069e121d047be561

SHA-1:

4e889d2ec5157469b359a4b8ec9de5dda159c614

SHA-256:

a21ba3ae131701700627979951d402974abdb6d02f444e613cdaf7cc479c201c

Scanner detections:

31 / 68

Status:

Adware

Explanation:

This installer bundles various adware prorgams that may include toolbars and web browser advertising injectors/extensions.

Analysis date:

5/9/2024 3:17:38 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Application.Kazy.427497

6544504

Agnitum Outpost

PUA.iBryte

7.1.1

AhnLab V3 Security

PUP/Win32.OptimumInstaller

2015.03.19

Avira AntiVirus

ADWARE/iBryte.Gen7

7.11.218.78

avast!

Win32:PUP-gen [PUP]

2014.9-150318

AVG

Adware AdPlugin

2016.0.3166

Bitdefender

Gen:Variant.Application.Kazy.427497

1.0.20.385

Bkav FE

W32.HfsAdware

1.3.0.6379

Clam AntiVirus

Win.Adware.Ibryte-2033

0.98/20202

Comodo Security

Application.Win32.iBryte.AWK

21453

Dr.Web

Trojan.DownLoader11.25708

9.0.1.05190

Emsisoft Anti-Malware

Gen:Variant.Application.Kazy.427497

9.0.0.4799

ESET NOD32

Win32/AdWare.iBryte.AW application

9.7.0.302.0

F-Prot

W32/A-c255719d

v6.4.7.1.166

F-Secure

Riskware.Gen:Variant.Application.Kazy

5.13.68

G Data

Gen:Variant.Application.Kazy.427497

15.3.25

herdProtect (fuzzy)

variant of java_setup.exe (Adware)

2015.6.24.10

IKARUS anti.virus

Trojan.Win32.Badur

t3scan.1.8.6.0

K7 AntiVirus

Unwanted-Program

13.177.12013

Kaspersky

not-a-virus:AdWare.Win32.iBryte

14.0.0.2327

Malwarebytes

PUP.Optional.iBryte

v2015.03.18.04

MicroWorld eScan

Gen:Variant.Application.Kazy.427497

16.0.0.231

NANO AntiVirus

Trojan.Win32.Buzus.dcvnql

0.28.2.61148

Norman

Gen:Variant.Application.Kazy.427497

03.12.2014 13:20:04

nProtect

Trojan-Clicker/W32.iBryte.64376

15.03.18.01

Quick Heal

TrojanDownloader.Badur.A5

3.15.14.00

Reason Heuristics

PUP.Adknowledge

15.3.18.15

Sophos

PUA 'iBryte Optimum Installer'

5.11

Vba32 AntiVirus

Trojan.Badur

3.12.26.3

VIPRE Antivirus

Optimum Installer

31718

Zillya! Antivirus

Adware.iBryte.Win32.1376

2.0.0.2104

File size:

62.9 KB (64,376 bytes)

Product version:

2.4.8.1

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\simpson_tapped_out_hack_tool.exe

Digital Signature

Signed by:

System Applet

Authority:

COMODO CA Limited

Valid from:

3/23/2014 5:00:00 PM

Valid to:

3/24/2015 4:59:59 PM

Subject:

CN=System Applet, O=System Applet, STREET="4600 Madison Ave, 10th FL", L=Kansas City, S=Missouri, PostalCode=64112, C=US

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

18FCD6B5EEB5AEC66D0222B5CA1850D9

File PE Metadata

Compilation timestamp:

8/1/2014 10:07:32 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

768:qOl8qd91AKQ1aDI8N/SbkIo+D5hBxKBx+gJUK/5EUhuWKvOvUwp3gg5ydP+Yq5at:9hdvI8t+kokZOM5fu7OvUwH5ydGjit

Entry address:

0x609D

Entry point:

E8, 46, 05, 00, 00, E9, 36, FD, FF, FF, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 08, A2, 40, 00, 89, 0D, 04, A2, 40, 00, 89, 15, 00, A2, 40, 00, 89, 1D, FC, A1, 40, 00, 89, 35, F8, A1, 40, 00, 89, 3D, F4, A1, 40, 00, 66, 8C, 15, 20, A2, 40, 00, 66, 8C, 0D, 14, A2, 40, 00, 66, 8C, 1D, F0, A1, 40, 00, 66, 8C, 05, EC, A1, 40, 00, 66, 8C, 25, E8, A1, 40, 00, 66, 8C, 2D, E4, A1, 40, 00, 9C, 8F, 05, 18, A2, 40, 00, 8B, 45, 00, A3, 0C, A2, 40, 00, 8B, 45, 04, A3, 10, A2, 40, 00, 8D, 45, 08, A3, 1C, A2, 40... 
[+]

Entropy:

5.8020

Code size:

24 KB (24,576 bytes)

The file simpson_tapped_out_hack_tool.exe has been seen being distributed by the following URL.

http://ow.ly/zv4qA

Remove simpson_tapped_out_hack_tool.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.