» windows_surface_scanner.exe
Overview
Analysis
File Details
Programs (1)
Downloads (2)

windows_surface_scanner.exe

DTI Data

This is a self-extracting archive and installer. The file has been seen being downloaded from windows-surface-scanner.software.informer.com and multiple other hosts.

File name:

Publisher:

DTI Data

Description:

Windows Surface Scanner 2.10 Installation

Version:

2.10

MD5:

e5e077886cb84a6c7b1a05c1f663b04d

SHA-1:

c68728cb53abfbd1f2916c4a0cd8491dd0602335

SHA-256:

946bc3142f366f1bfbbe3f25833068c9edc0709e2bd1c58711346408748b4539

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/25/2024 12:40:44 AM UTC (today)

File size:

2.2 MB (2,306,140 bytes)

DTI Data

File type:

Executable application (Win32 EXE)

Language:

English (United States)

File PE Metadata

Compilation timestamp:

6/20/1992 1:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

49152:OdYsGg8zqK4DK8B7XsxOSkyB3cEatj+Alpf22:OdYsE+K5BAsetaIpF

Entry address:

0x17DE0

Entry point:

55, 8B, EC, 83, C4, F0, B8, 18, 7D, 41, 00, E8, F0, AA, FE, FF, B8, 40, 7E, 41, 00, E8, F6, 17, FF, FF, 8B, 15, AC, 86, 41, 00, 89, 02, 8B, 15, AC, 86, 41, 00, 8B, 12, A1, B0, 86, 41, 00, E8, 80, D5, FF, FF, 8B, 15, AC, 86, 41, 00, 8B, 12, A1, 50, 86, 41, 00, E8, 3A, 71, FF, FF, A1, AC, 86, 41, 00, E8, E8, 09, FF, FF, E8, 0B, 9B, FE, FF, 00, 00, 00, FF, FF, FF, FF, 01, 00, 00, 00, 2A, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.9867

Developed / compiled with:

Microsoft Visual C++

Code size:

92 KB (94,208 bytes)

The file windows_surface_scanner.exe has been discovered within the following program.

360Amigo System Speedup Free by 360Amigo

360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).

www.360amigo.com

53% remove it

The file windows_surface_scanner.exe has been seen being distributed by the following 2 URLs.

http://windows-surface-scanner.software.informer.com/.../

http://www.dtidata.com/.../windows_surface_scanner.exe

Scan windows_surface_scanner.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.