suptab.dll

SupTab

Thinknice Co. Limited

The module suptab.dll, “SupTab setup package” by Thinknice Co. Limited has been detected as adware by 2 anti-malware scanners. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘IETabPage Class’. This file is typically installed with the program SupTab by Thinknice Co. Limited which is a potentially unwanted software program.
Publisher:
Thinknice Co. Limited  (signed and verified)

Product:
SupTab

Description:
SupTab setup package

Version:
1.8.8.3434

MD5:
711a2050ba175677d77592f22e50c22b

SHA-1:
c6e90f14a7f66692913a92e8a2be7ee89ef782d2

SHA-256:
5901a3fd793734c929967f8432e4e4146db89065b1e966ed27970228195ab925

Scanner detections:
2 / 68

Status:
Adware

Analysis date:
3/24/2014 8:22:09 AM UTC  (four months ago)

Scan engine
Detection
Engine version

Malwarebytes
PUP.Optional.SupTab.A
v2014.03.20.02

Reason Heuristics
PUP.BHO.ThinkniceCoLimited.G
14.3.20.14

File size:
501.1 KB (513,136 bytes)

Product version:
1.8.8.3434

Copyright:
Copyright (C) 2013

Original file name:
setup.exe

File type:
Dynamic link library (Win32 DLL)

Language:
English (United Kingdom)

Common path:
C:\Program Files\suptab\suptab.dll

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
11/26/2013 7:34:13 AM

Valid to:
11/27/2014 7:34:13 AM

Subject:
CN=Thinknice Co. Limited, O=Thinknice Co. Limited, L=HongKong, S=HongKong, C=HK

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11218A5EF69A65044FE28125681D829B5EFE

File PE Metadata
Compilation timestamp:
3/5/2014 3:09:31 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
12288:gFZGJfJiMts0KzcxEoBVZJ9tddcx0hrnx3rr5l:gFZAtI4Drv59x3r7

Entry address:
0x226D4

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, C5, C6, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, 10, 16, 06, 10, E8, CD, 5E, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, 80, A5, 06, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, D4, 59, 05, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
325 KB (332,800 bytes)

Internet Explorer BHO
CLSID:
{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}

CLSID name:
IETabPage Class


The file suptab.dll has been discovered within the following program.

SupTab  by Thinknice Co. Limited
SupTab is an web browser advertisement injection extension that is designed with the core purpose of delivering ads to the user's web browser. Ads are in the form of banners (both static and videos) as well as context-hyper links.
80% remove it
 
Powered by Should I Remove It?

There are numerous known versions of suptab.dll by Thinknice Co. Limited.

15 / 68    (Adware)
suptab.dll  2.8.8.295  (d900e7a2c4bec4703960cfac1b7f534858c113c4)

12 / 68    (Adware)
suptab.dll  2.8.8.295  (4e5e1b36910ad12e0e328f71a7cdc6ea6c009f9e)

7 / 68      (Adware)
suptab.dll  2.8.8.295  (9dc13db9c123270c2356ed410128e11d5adf7c6e)

6 / 68      (Adware)
suptab.dll  2.8.8.221  (ec7ec5d60c5a578bc9953115d368becd05ba14b2)

6 / 68      (Adware)
suptab.dll  2.8.8.221  (189fc4defbf3af52775f7a922789a0ca6a8ff6f8)

6 / 68      (Adware)
suptab.dll  2.8.8.89  (0e20ec40a5466cceb99bdb0473afbe60a9cf0f0d)

5 / 68      (Adware)
suptab.dll  2.8.8.89  (99a50219ede0732c1daa1ebc02ff704070ffdf68)

5 / 68      (Adware)
suptab.dll  2.8.8.89  (0d44343f3c89621c93781947daa4a26650cbc4c9)

5 / 68      (Adware)
suptab.dll  2.8.8.89  (731fd074cce94c1b6ee53bfe5e02e87457e32ca6)

3 / 68      (Adware)
suptab.dll  1.8.8.3364  (464fd963183897bb987030a2097e759ed613a79c)

2 / 68      (Adware)
suptab.dll  1.8.8.3364  (25b6795a285bfff09ce6b9e6dc08ff8720df25dd)

2 / 68      (Adware)
suptab.dll  1.8.8.3364  (a6c5a5dedfc6cef0b8ccb3819a1cbae460b7067d)

4 / 68      (Adware)
suptab.dll  1.8.8.3320  (066797d487ba448fb1d401e34564fb93e2b2d910)

2 / 68      (Adware)
suptab.dll  1.8.8.3309  (f3c89536ceeaedbb3f6e11890cf21451cb397fc6)

2 / 68      (Adware)
suptab.dll  1.8.8.3306  (e8ab6f68a0daba4bc3967406d2e2bbee568b1fbd)

1 / 68      (Adware)
suptab.exe  (45683a6727c3e2ff98994931e3bf59719ebc6f81)

4 / 68      (Adware)
pluginservice.exe  (63a43d95149b189141788e7c493ddcf07110145a)

1 / 68      (Adware)
supiepluginserviceupdate.exe  (e4e6f0f67f64596fb4352ac05ee2f160d0ceaca3)

1 / 68      (Adware)
bhoenabler.exe  (8ffcdad934bb7669cd070eaae9fad34192e1308a)

9 / 68      (Adware)
suptabp.exe  (e9486fa448d24118c54f2944c2da3db9892ac155)

2 / 68      (Adware)
RSHP.exe  (bdbd3072f1e67f52c8bb0c4973646d3de658d5db)

1 / 68      (Adware)
spappsv64.dll  (abf79312235533707d351aaf190c354781357d92)

1 / 68      (Adware)
dpinterface64.dll  (f96e4df9b7af5f6ac26b5040e7d65ffc5c16e58d)

1 / 68      (Adware)
dpinterface32.dll  (1edcbd99868415ee53c921880330bf0e00cb6601)

1 / 68      (Adware)
searchprotect64.dll  (397b2f6369ca743e8e3e4be1399794b00427719b)

1 / 68      (Adware)
searchprotect32.dll  (ea1b91f9124b5ee8a90c4c91b77780f43b9c4279)

Detection Incidence by Country