home

wirelesssifrekirmaprogrami.exe

Setup

Dey yazilim ve internet hizmetleri san. tic. ltd. sti.

The application wirelesssifrekirmaprogrami.exe by Dey yazilim ve internet hizmetleri san. tic. ltd. sti has been detected as adware by 16 anti-malware scanners. This is a setup and installation application and has been known to bundle potentially unwanted software.
Publisher:
Ceziro  (signed by Dey yazilim ve internet hizmetleri san. tic. ltd. sti.)

Product:
Setup

Description:
Good Setup

Version:
1.1.2.0

MD5:
72fe975cb797dee63e286c58925d8fd8

SHA-1:
ca8aaa002dc6e3d1edd3923fb6da75c35e4c7597

SHA-256:
078bef6d6eef2601da47492c99069e3ac23922c917b4b7e016b44d3aa4fa69a2

Scanner detections:
16 / 68

Status:
Adware

Analysis date:
4/25/2024 6:02:21 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
Adware/Joedown.476376
7.11.214.140

AVG
Generic
2016.0.3174

Dr.Web
Trojan.KillFiles.18730
9.0.1.070

ESET NOD32
MSIL/Adware.Joedown (variant)
9.11282

Fortinet FortiGate
Adware/Agent
3/11/2015

G Data
Win32.Application.Agent.AP4UPI
15.3.25

herdProtect (fuzzy)
variant of pratesfacebookhackv1.2passwordsifreseri.exe (Adware)
2015.6.17.13

IKARUS anti.virus
not-a-virus:AdWare.MSIL.Agent
t3scan.1.8.6.0

K7 AntiVirus
Adware
13.200.15187

Kaspersky
not-a-virus:AdWare.MSIL.Agent
14.0.0.2363

McAfee
Artemis!7E020EFB6E27
5600.6830

Panda Antivirus
Generic Suspicious
15.03.11.08

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1015

Reason Heuristics
PUP.Installer.Amonitize
15.3.11.8

Sophos
Generic PUA OI
4.98

Trend Micro House Call
Suspicious_GEN.F47V0307
7.2.70

File size:
463.7 KB (474,840 bytes)

Product version:
1.1.2.0

Copyright:
Ceziro

Trademarks:
Ceziro

Original file name:
Ceziro.exe

File type:
Executable application (Win32 EXE)

Language:
Turkish (Turkey)

Common path:
C:\users\{user}\downloads\wirelesssifrekirmaprogrami.exe

Digital Signature
Signed by:
Dey yazilim ve internet hizmetleri san. tic. ltd. sti.

Authority:
COMODO CA Limited

Valid from:
3/12/2014 2:00:00 AM

Valid to:
3/13/2015 1:59:59 AM

Subject:
CN=Dey yazilim ve internet hizmetleri san. tic. ltd. sti., O=Dey yazilim ve internet hizmetleri san. tic. ltd. sti., STREET=kuloglu mah alyon gecidi sok, STREET=beyoglu, L=istanbul, S=istanbul, PostalCode=34433, C=TR

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00FD3AA42CD883A6D47CC56CDA9837EB85

File PE Metadata
Compilation timestamp:
2/24/2015 12:29:51 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:uMGsgL7GZOsLa30hTbeS/J1s0ldUmx/bLbYnwch3Se7BYUV:u/nGZY09KS/J1sGdUmx/bwnwccu

Entry address:
0x6300E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
388.5 KB (397,824 bytes)

Remove wirelesssifrekirmaprogrami.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.