Goodware Installer

Categoria: Adware e PUA Opzioni di protezione ora disponibili:03 ott 2013 11:58:20 (GMT)
Tipo: Adware Ultimo aggiornamento:13 set 2014 10:46:02 (GMT)

Download Scaricate il nostro Virus Removal Tool: è gratis! - Scoprite le minacce che sono sfuggite al vostro antivirus

Examples of Goodware Installer include:

Example 1

File Information

Size
198K
SHA-1
32750e8535c66f506a5c5c8eef4f7d241d24a1a9
MD5
f3405393506e6996e1f16a1c7433ad6b
CRC-32
2ec32e93
File type
Windows executable
First seen
2013-08-07

Runtime Analysis

HTTP Requests
  • http://smart.gmtrack.com/public/smartinstaller/smartinstaller.gpp
DNS Requests
  • smart.gmtrack.com

Example 2

File Information

Size
198K
SHA-1
712252cf20918cf3dfa8e24b0a3364a2590e936d
MD5
94716bd904d6017e42ab173783ad37c7
CRC-32
40a14d52
File type
Windows executable
First seen
2013-09-18

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\nsr6.tmp\NSISArray.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\d080813C\20140912232757.exe
    Size
    555K
    SHA-1
    ada3fd80574406ac8d15ac080dfef132a38a04cf
    MD5
    1eb29a7fadeab12d4c7e8f7e55e94c38
    CRC-32
    61786a99
    File type
    Windows executable
    First seen
    2014-04-28
  • c:\Documents and Settings\test user\Local Settings\Temp\nsw3.tmp\ginetc.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsr6.tmp\IpConfig.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsw3.tmp\System.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsr6.tmp\ginetc.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsr6.tmp\System.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsr6.tmp\nxs.dll
Processes Created
  • c:\docume~1\support\locals~1\temp\d080813c\20140912232757.exe
HTTP Requests
  • http://smart.gmtrack.com/campaign/getconfiguration
  • http://smart.gmtrack.com/public/installer/.zip
  • http://smart.gmtrack.com/public/smartinstaller/smartinstaller.gpp
DNS Requests
  • smart.gmtrack.com

Example 3

File Information

Size
198K
SHA-1
bd074c86db0072f37b51c376bf6e4ec90a5536c0
MD5
9d6064ebb1ec8e0fe583b27e1e57a066
CRC-32
8386dc38
File type
Windows executable
First seen
2013-09-17

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\nsp3.tmp\ginetc.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg6.tmp\ginetc.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg6.tmp\System.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg6.tmp\nsExec.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\components.html
  • c:\Documents and Settings\test user\Local Settings\Temp\d052313a\ovh.jpg
  • c:\Documents and Settings\test user\Local Settings\Temp\d052313a\public\componentimage\696.bmp
  • c:\Documents and Settings\test user\Local Settings\Temp\d052313a\smart.ini
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg6.tmp\nsDialogs.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\d052313a\public\componentimage\205.bmp
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg6.tmp\NSISArray.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsp3.tmp\System.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg6.tmp\IpConfig.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg6.tmp\nxs.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\d052313a\20130917190242.exe
  • c:\Documents and Settings\test user\Local Settings\Temp\d052313a\public\installerconfiguration\97.bmp
Processes Created
  • c:\docume~1\support\locals~1\temp\d052313a\20130917190242.exe
  • c:\docume~1\support\locals~1\temp\d052313a\7za.exe
  • c:\docume~1\support\locals~1\temp\nsg6.tmp\ns7.tmp
HTTP Requests
  • http://smart.gmtrack.com/campaign/getconfiguration
  • http://smart.gmtrack.com/precheck/precheck/
  • http://smart.gmtrack.com/public/installer/252.zip
  • http://smart.gmtrack.com/public/smartinstaller/smartinstaller.gpp
DNS Requests
  • smart.gmtrack.com

scarica Prova gratuita dei prodotti Sophos
Scarica subito