home

SpySweeperScan.exe

Spy Sweeper Antispyware Scan Setup

Webroot Software Company

This is a self-extracting archive and installer. The file has been seen being downloaded from www.spysweeper-download.com.
Publisher:
Webroot Software Company

Product:
Spy Sweeper Antispyware Scan Setup

Version:
1.0.0

MD5:
e4fcb7ecf9d79054335b391d0f8c58af

SHA-1:
6ee57aea8885eace9d9786efe3df37c5f541c261

SHA-256:
a4fa393a594e73046eb7a5318fdf0a34dc75fa72df0df87a1873ccdfce31d200

Scanner detections:
6 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/26/2024 11:54:24 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

AVG
Skodna.Generic
2015.0.3520

Baidu Antivirus
Adware.Win32.AdLoad
4.0.3.14330

K7 AntiVirus
Riskware
13.176.11408

McAfee
Artemis!E4FCB7ECF9D7
5600.7176

NANO AntiVirus
Riskware.Win32.Agent.cinaww
0.28.0.58101

Rising Antivirus
PE:Malware.Downloader!1.9EEC
23.00.65.14328

File size:
421.3 KB (431,430 bytes)

Product version:
1.0.0

Copyright:
© Webroot Software Company

Original file name:
SpySweeperScan.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\spysweeperscan.exe

File PE Metadata
Compilation timestamp:
5/6/2009 7:38:52 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
12288:dVUozeYlxFfQUTdOFyh6yT36i8EhutazcyfJFFoS4lIVW:77JnJQ2XTqilut2cyfJFKI4

Entry address:
0x1189F0

Entry point:
60, BE, 00, 50, 4C, 00, 8D, BE, 00, C0, F3, FF, 57, 89, E5, 8D, 9C, 24, 80, C1, FF, FF, 31, C0, 50, 39, DC, 75, FB, 46, 46, 53, 68, 10, 6C, 11, 00, 57, 83, C3, 04, 53, 68, EB, 39, 05, 00, 56, 83, C3, 04, 53, 50, C7, 03, 03, 00, 02, 00, 90, 90, 90, 90, 90, 55, 57, 56, 53, 83, EC, 7C, 8B, 94, 24, 90, 00, 00, 00, C7, 44, 24, 74, 00, 00, 00, 00, C6, 44, 24, 73, 00, 8B, AC, 24, 9C, 00, 00, 00, 8D, 42, 04, 89, 44, 24, 78, B8, 01, 00, 00, 00, 0F, B6, 4A, 02, 89, C3, D3, E3, 89, D9, 49, 89, 4C, 24, 6C, 0F, B6, 4A...
 
[+]

Code size:
340 KB (348,160 bytes)

The file SpySweeperScan.exe has been seen being distributed by the following URL.

http://www.spysweeper-download.com/SpySweeperScan.exe

Scan SpySweeperScan.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.