» SmartTipAgent.exe
Overview
Analysis
File Details

SmartTipAgent.exe

SmartTipAgent

Maroin Co., Ltd

The application SmartTipAgent.exe, “Agent Application Tools” by Maroin Co. has been detected as adware by 11 anti-malware scanners.

File name:

SmartTipAgent.exe

Publisher:

Maroin (signed by Maroin Co., Ltd)

Product:

SmartTipAgent

Description:

Agent Application Tools

Version:

2.0.0.22

MD5:

e11d19dd7fbdd96acd97b670565635ac

SHA-1:

a4ba80bf50f035acb1e3936310a31cfe82cf999a

SHA-256:

135abc0e886dcf93ea14e8dcac053986704db20944fddea64337fbbb9713f78f

Scanner detections:

11 / 68

Status:

Adware

Analysis date:

5/10/2024 5:01:40 PM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Malware-gen

2014.9-160212

AVG

Generic

2017.0.2835

Comodo Security

UnclassifiedMalware

21637

Dr.Web

Trojan.Click3.10466

9.0.1.043

IKARUS anti.virus

Trojan.Agent

t3scan.1.8.9.0

McAfee

Artemis!B51EAC993CCD

5600.6491

Norman

Kraddare.CERT

11.20160212

Reason Heuristics

PUP.MaroinCo (M)

16.2.12.21

Trend Micro House Call

TROJ_GEN.R047C0OAM15

7.2.43

Trend Micro

TROJ_GEN.R047C0OAM15

10.465.12

VIPRE Antivirus

Trojan.Win32.Generic

39026

File size:

3.3 MB (3,462,504 bytes)

Product version:

2.0.0.22

Original file name:

SmartTipAgent.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\smarttip\smarttipagent.exe

Digital Signature

Signed by:

Maroin Co., Ltd

Authority:

Thawte, Inc.

Valid from:

12/18/2013 9:00:00 AM

Valid to:

2/17/2016 8:59:59 AM

Subject:

CN="Maroin Co., Ltd", O="Maroin Co., Ltd", L=Haeundae-gu, S=Busan, C=KR

Issuer:

CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:

5DF1E27BEBF6F3BA4B33632B858EC872

File PE Metadata

Compilation timestamp:

9/5/2014 2:58:57 PM

OS version:

6.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

98304:xNf+kWSPgWz/PPzYAyhCvdAoD3NyiFLOAkGkzdnEVomFHKnPlie:mfggWjFXAoD3NFLOyomFHKnPlie

Entry address:

0x11D430

Entry point:

E8, A5, B1, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, 40, D3, 58, 00, E8, 5A, 1F, 00, 00, E8, 72, B3, 00, 00, 0F, B7, F0, 6A, 02, E8, 38, B1, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, 4C, 98, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8... 
[+]

Entropy:

6.7948

Packer / compiler:

PEQuake V0.06

Code size:

1.3 MB (1,334,784 bytes)

Remove SmartTipAgent.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.