unins000.exe

FreeGamePick.com

The application unins000.exe by FreeGamePick.com has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is the uninstaller utility registered in the Windows Control Panel for the program Jewel Quest Heritage by FreeGamePick.
Publisher:
FreeGamePick.com  (signed and verified)

Description:
Setup/Uninstall

Version:
51.52.0.0

MD5:
ba225b88217c994e71f6d7c031ed036a

SHA-1:
d26699a3ddbb9da6732a512015e7cbcca38e228b

SHA-256:
100103ecabe96388f8263a7e2b719cce1dbfa8e2d8ec6527166db3ccec91e132

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
6/2/2020 9:40:57 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.3.5.8

File size:
696.7 KB (713,424 bytes)

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\freegamepick\jewel quest heritage\unins000.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
1/16/2012 8:00:00 PM

Valid to:
1/16/2015 7:59:59 PM

Subject:
CN=FreeGamePick.com, O=FreeGamePick.com, STREET=4521 PGA BLVD, STREET=UNIT 326, L=PALM BEACH GARDENS, S=FL, PostalCode=33418, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
108EBC6447AC9F5F9337EC4BBC68EC5E

File PE Metadata
Compilation timestamp:
6/19/1992 7:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x98CFC

Entry point:
55, 8B, EC, 83, C4, F4, 53, 56, 57, E8, 3A, A6, F6, FF, E8, 91, C9, F6, FF, E8, 08, D6, F6, FF, E8, AB, D6, F6, FF, E8, 2E, 0C, F7, FF, E8, 41, 7A, F7, FF, E8, A4, 7C, F7, FF, E8, FB, 9B, F7, FF, E8, 0E, 03, F8, FF, E8, 09, C2, F8, FF, E8, CC, 69, F9, FF, E8, B3, 7C, F9, FF, E8, FE, 69, FB, FF, E8, C5, 6E, FB, FF, E8, C4, 76, FB, FF, E8, A3, 8A, FB, FF, E8, 96, A4, FB, FF, E8, 55, E3, FB, FF, E8, 54, F2, FB, FF, E8, 67, 05, FC, FF, E8, 86, B8, FC, FF, E8, D5, 40, FD, FF, E8, FC, FF, FD, FF, E8, 5F, B3, FE...
 
[+]

Entropy:
6.5244

Developed / compiled with:
Microsoft Visual C++

Code size:
608 KB (622,592 bytes)

Program Uninstaller
Program name:
Jewel Quest Heritage

Display publisher:
FreeGamePick

Uninstall string:
"C:\Program Files (x86)\FreeGamePick\Jewel Quest Heritage\unins000.exe"


Remove unins000.exe - Powered by Reason Core Security