PUA

PUP.Optional.BundleInstaller.DDS malicious file

Malware Removal

The PUP.Optional.BundleInstaller.DDS is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PUP.Optional.BundleInstaller.DDS virus can do?

  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • Reads data out of its own binary image
  • Authenticode signature is invalid
  • Harvests cookies for information gathering
  • Anomalous binary characteristics

How to determine PUP.Optional.BundleInstaller.DDS?



File Info:

name: DB5E7256AB9F4618FACC.mlw
path: /opt/CAPEv2/storage/binaries/87a52b4583790e69f30266a7a562f83375e23605493ca95d64061b2d8a6c7345
crc32: 8EE15E47
md5: db5e7256ab9f4618facc65da0329ea4b
sha1: 16863681b3370043c9b579e4d2f347713f8fd15f
sha256: 87a52b4583790e69f30266a7a562f83375e23605493ca95d64061b2d8a6c7345
sha512: 88a9bca06bd0d8e05ba103ebefb8e7280cf03fbf44cbb3db9bc0409f9671fadcc1304678ab2743bdcb5ed64a126ea4e98ea655cc9c7402f808bf7b03949297ae
ssdeep: 12288:HPqlDAbt2HGn1dlrRe0eBkjvKghJqmMIAp4805TBzHeFa:HCrHGn1bYlkjv5hJ3MIApL05NzWa
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T130E4E04279D2C072C44205B1487AAB616AB9BEB01774ACC3B7D84F793EA55C1BB3931F
sha3_384: cf0d054e88308a3c245ef0ebc76cf8e6834a30252174d07aa4be82b579c1d05b55f01a79a25e80fc6127126a9260f338
ep_bytes: e8f8860000e978feffffcccccccccccc
timestamp: 2012-04-15 19:07:06


Version Info:

CompanyName: 
FileDescription: Install Program
FileVersion: 16.6.1.11212
InternalName: MIP
LegalCopyright: 
OriginalFilename: install.exe
ProductName: install.exe
ProductVersion: 16.6.1.11212
Translation: 0x0409 0x04b0

PUP.Optional.BundleInstaller.DDS also known as:

tehtrisGeneric.Malware
MicroWorld-eScanTrojan.GenericKD.67337111
FireEyeGeneric.mg.db5e7256ab9f4618
MalwarebytesPUP.Optional.BundleInstaller.DDS
ZillyaAdware.BrowseFox.Win32.121162
VirITPUP.Win32.Microgaming.A
CyrenW32/Casino.P.gen!Eldorado
Elasticmalicious (high confidence)
CynetMalicious (score: 99)
BitDefenderTrojan.GenericKD.67337111
SUPERAntiSpywareTrojan.Agent/Gen-PrimeCasino
EmsisoftTrojan.GenericKD.67337111 (B)
VIPRETrojan.GenericKD.67337111
McAfee-GW-EditionBehavesLike.Win32.Dropper.jc
SophosGeneric ML PUA (PUA)
SentinelOneStatic AI – Suspicious PE
GDataTrojan.GenericKD.67337111
AviraGAME/Casino.Gen
ArcabitTrojan.Generic.D4037B97
GoogleDetected
ALYacTrojan.GenericKD.67337111
MAXmalware (ai score=82)
TrendMicro-HouseCallTROJ_GEN.R03BH0CF323
DeepInstinctMALICIOUS
CrowdStrikewin/grayware_confidence_90% (D)

How to remove PUP.Optional.BundleInstaller.DDS?

PUP.Optional.BundleInstaller.DDS removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment