home

windowsloader2_2_2.exe

Innova Soluyushns OOO

The application windowsloader2_2_2.exe by Innova Soluyushns OOO has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Innova Soluyushns OOO  (signed and verified)

MD5:
22d60db9fa91c1a700a5dd1508df001d

SHA-1:
064cdb3ee93d08f9e98a61652fa9d1b2b4b219dc

SHA-256:
7c8cb334a9b75cfe57c8ba00ea3e496d36627d243768113f78b5f811f19f5de2

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
5/17/2024 12:27:58 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.3.11.10

File size:
652.9 KB (668,552 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\windowsloader2 2 2\windowsloader2_2_2\windowsloader2_2_2.exe

Digital Signature
Signed by:
Innova Soluyushns OOO

Authority:
COMODO CA Limited

Valid from:
11/11/2014 3:00:00 AM

Valid to:
11/12/2015 2:59:59 AM

Subject:
CN=Innova Soluyushns OOO, O=Innova Soluyushns OOO, STREET="Mukomolny, 2/1", L=Moscow, S=Moscow region, PostalCode=123290, C=RU

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
5B6A93520D54B6626ADB1AF5B6FDE0A0

File PE Metadata
Compilation timestamp:
1/31/2015 6:11:02 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
0.23

Entry address:
0xAC52

Entry point:
4E, FC, 35, 25, 81, D9, 9B, 0F, BA, EA, 0A, 39, 15, DB, 29, 41, 00, C1, E1, 08, D1, CF, 40, 90, 90, F5, 33, 35, C6, 08, 45, 00, C1, E5, 17, C1, DB, 13, 13, 54, 24, 14, 4F, 87, FE, C1, D8, 08, C1, DF, 00, F7, D2, 0F, BA, F6, 04, C1, D0, 08, 0F, BA, F1, 07, F7, D0, F7, D6, 8B, 4C, 24, 14, 0F, BA, F9, 1A, C1, E6, 00, D1, EF, 0F, BA, F6, 07, 11, CB, C1, E7, 02, 0F, BA, F2, 1C, C1, D8, 1E, 0F, BA, F9, 03, C1, EB, 1F, F5, 81, CE, 88, 8E, E7, A2, C1, E3, 1E, F9, 13, 15, 09, 4B, 41, 00, 85, 4C, 24, 04, 41, C1, C6...
 
[+]

Code size:
566.5 KB (580,096 bytes)

Remove windowsloader2_2_2.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.