iBryte Optimum Installer

Category: Adware and PUAs Protection available since:14 Nov 2012 12:28:59 (GMT)
Type: Unspecified PUA Last Updated:16 Nov 2014 01:41:06 (GMT)

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

iBryte Optimum Installer is an installer which bundles legitimate applications with offers for additional third party applications that may be unwanted by the user. Such third party applications are typically installed onto users’ computers by default, but may include an option to ‘opt-out’ during or after the installation process.

Examples of iBryte Optimum Installer include:

Example 1

File Information

Size
632K
SHA-1
0000124e0339090a3adf1a2a6394606c4f5bad15
MD5
e1506c2456f25604cfdbcafd17f2a150
CRC-32
922c6bb9
File type
Windows executable
First seen
2007-06-26

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\i_temp.temp
  • c:\Documents and Settings\test user\Local Settings\Temp\offconfig.temp
HTTP Requests
  • http://cdn.install.oibundles2.com/bundles/strive_freedownloadmanager/strive_freedownloadmanager.jpg
  • http://cdn.install.oibundles2.com/installerpackage/wisedownloads/muted/muted_optimum_header.jpg
  • http://imp.optimum-installer.com/impression.do/
  • http://install.optimum-installer.com/config/strive_freedownloadmanager/offers.json
DNS Requests
  • cdn.install.oibundles2.com
  • imp.optimum-installer.com
  • install.optimum-installer.com

Example 2

File Information

Size
1.1M
SHA-1
00005f0ffc9be87969968b363f830f17d4c16da1
MD5
6f44eb6c08959214f3752782627a7ec6
CRC-32
081e53ff
File type
Windows executable
First seen
2013-07-30

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\lock.temp
HTTP Requests
  • http://config.oi-config1.com/config/Gimp/offers.json
  • http://imp.oi-imp1.com/impression.do/
DNS Requests
  • config.oi-config1.com
  • imp.oi-imp1.com

Example 3

File Information

Size
1.8M
SHA-1
000076bfd70a6654dbe3a290d8c02ade29bb567f
MD5
0a2205b1b69c231c2d15f745c74c8cb9
CRC-32
6612f97b
File type
Windows executable
First seen
2013-07-30

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\lock.temp
HTTP Requests
  • http://config.oi-config3.com/config/slice_updater/offers.json
  • http://d3d6wi7c7pa6m0.cloudfront.net/bundles/myfreedownload_firefoxbund/express_seconds_generic.jpg
  • http://d3d6wi7c7pa6m0.cloudfront.net/bundles/slice_updater/slice_updater.jpg
  • http://d3d6wi7c7pa6m0.cloudfront.net/installerpackage/wisedownloads/muted/header_generic_notext.jpg
  • http://imp.oi-imp1.com/impression.do/
DNS Requests
  • config.oi-config3.com
  • d3d6wi7c7pa6m0.cloudfront.net
  • imp.oi-imp1.com

download Try Sophos products for free
Download now