» spappsv64.dll
Overview
Analysis
File Details
Programs (1)

spappsv64.dll

1.0.3.390

Thinknice Co. Limited

The module spappsv64.dll by Thinknice Co. Limited has been detected as adware by 21 anti-malware scanners. This file is typically installed with the program SupTab by Thinknice Co. Limited which is a potentially unwanted software program.

File name:

spappsv64.dll

Publisher:

Skytech Co., Ltd. (signed by Thinknice Co. Limited)

Product:

1.0.3.390

Description:

Skytech

Version:

1.0.3.390

MD5:

d2bc9178eedb147be75518853bea3922

SHA-1:

0993a4e6cf51e60a00e69de17f8823470899c33c

SHA-256:

c3e8107da58bb41e94c613f420cd724e8050fe07518e8bd8350e4618608f389a

Scanner detections:

21 / 68

Status:

Adware

Analysis date:

4/26/2024 8:34:12 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Adware.Generic.954811

609

Baidu Antivirus

PUA.Win64.Thinknice

4.0.3.1566

Bitdefender

Adware.Generic.954811

1.0.20.785

Bkav FE

W64.HfsAdware

1.3.0.6379

Dr.Web

Adware.Mutabaha.244

9.0.1.0157

Emsisoft Anti-Malware

Adware.Generic.954811

8.15.06.06.05

ESET NOD32

Win64/Thinknice.C potentially unwanted (variant)

9.11521

F-Secure

Adware.Generic.954811

11.2015-06-06_7

G Data

Adware.Generic.954811

15.6.25

K7 AntiVirus

Riskware

13.203.15688

Kaspersky

not-a-virus:AdWare.Win32.Agent

14.0.0.1929

Malwarebytes

PUP.Optional.Skytech.A

v2015.06.06.05

McAfee

Artemis!D2BC9178EEDB

5600.6743

MicroWorld eScan

Adware.Generic.954811

16.0.0.471

NANO AntiVirus

Riskware.Win64.Agent.dbkpdp

0.30.20.1219

Panda Antivirus

Trj/Chgt.A

15.06.06.05

Quick Heal

AdWare.Agent.r6 (Not a Virus)

6.15.14.00

Reason Heuristics

PUP.Thinknice.ThinkniceCo

15.6.6.5

Sophos

Elex

4.98

Vba32 AntiVirus

AdWare.Agent

3.12.26.3

Zillya! Antivirus

Adware.Agent.Win32.10406

2.0.0.2149

File size:

534.1 KB (546,928 bytes)

Product version:

1.0.3.390

Original file name:

SProtect.dll

File type:

Dynamic link library (Win64 DLL)

Language:

Chinese (Simplified, PRC)

Common path:

C:\Program Files\suptab\spappsv64.dll

Digital Signature

Signed by:

Thinknice Co. Limited

Authority:

GlobalSign nv-sa

Valid from:

11/26/2013 12:04:13 PM

Valid to:

11/27/2014 12:04:13 PM

Subject:

CN=Thinknice Co. Limited, O=Thinknice Co. Limited, L=HongKong, S=HongKong, C=HK

Issuer:

CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:

11218A5EF69A65044FE28125681D829B5EFE

File PE Metadata

Compilation timestamp:

6/10/2014 3:51:43 PM

OS version:

5.2

OS bitness:

Win64

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

6144:VZwuFTRohj+WjAsgPjZxYXTWYHULXfykatBRMooWC17Fat:9Rohj+FPYSakaXKo9t

Entry address:

0x238EC

Entry point:

48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, 6B, 8E, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, 03, 00, 00, 00, CC, CC, CC, 48, 8B, C4, 48, 89, 58, 20, 4C, 89, 40, 18, 89, 50, 10, 48, 89, 48, 08, 56, 57, 41, 56, 48, 83, EC, 50, 49, 8B, F0, 8B, DA, 4C, 8B, F1, BA, 01, 00, 00, 00, 89, 50, B8, 85, DB, 75, 0F, 39, 1D, 18, C5, 05, 00, 75, 07, 33, C0, E9, D2, 00, 00, 00, 8D, 43, FF... 
[+]

Entropy:

4.8731

Code size:

243 KB (248,832 bytes)

The file spappsv64.dll has been discovered within the following program.

SupTab by Thinknice Co. Limited

SupTab is an web browser advertisement injection extension that is designed with the core purpose of delivering ads to the user's web browser. Ads are in the form of banners (both static and videos) as well as context-hyper links.

80% remove it

Remove spappsv64.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.