PUP.Optional.SweetPacks information

The PUP.Optional.SweetPacks is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What PUP.Optional.SweetPacks virus can do?

The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid
Anomalous binary characteristics

How to determine PUP.Optional.SweetPacks?


File Info:
name: C307F86FDA7106B04692.mlw
path: /opt/CAPEv2/storage/binaries/d9c62a669534e438a0328654e2f7353d6146bd4943d71da9e0a711d99f8919cd
crc32: 179F5A0E
md5: c307f86fda7106b046922a880f99fab2
sha1: e53c24485779b61f12c24d501214127b488ba3f1
sha256: d9c62a669534e438a0328654e2f7353d6146bd4943d71da9e0a711d99f8919cd
sha512: 9b6666775d63e396691f4ad609cd58b33a91ea7000095f048595cde9b6a1d45288c452d78e819edb244e7ae556550d9314fb2d625cda1ffd6666b205bb82b6f2
ssdeep: 12288:gGZsdJwe58xW3g/SRibtsas9mC22A9J7QxKEw0wIoSrtR:gZTn8x+g/kibGas9m924JJV0w0D
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T143F49D49A2D29751E2B317BAD9B2F1D49927FD1049F0848F71EAE47F6132F90C869323
sha3_384: 998929fb707d704fca7dd7c5b7cc99b2e2e3cce9ebf959f6b0d760f78b11542bd1b48318e94e50dec800fc980808848b
ep_bytes: 60be008058008dbe0090e7ff5789e58d
timestamp: 2013-11-03 14:02:40

Version Info:
FileVersion: 4, 1, 0, 8
ProductVersion: 4, 1, 0, 8
Comments: local setups
CompanyName: Perion Network Ltd
FileDescription: SweetIM Installer by SweetPacks
InternalName: Perion Installer
LegalCopyright: Copyright © 2013 Perion Network Ltd.
ProductName: SweetIM by SweetPacks
XVI_Compid: 42
XVI_InternalProdVer: 4.1.0.8.48.1.5
Translation: 0x0409 0x04b0

PUP.Optional.SweetPacks also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (moderate confidence)
Skyhigh	BehavesLike.Win32.Generic.bh
McAfee	RDN/Generic.dx
Sangfor	Trojan.Win32.Agent.V9pe
Alibaba	Trojan:Win32/SweetIM.06210a95
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
Cynet	Malicious (score: 100)
Avast	Win32:Malware-gen
SentinelOne	Static AI – Suspicious PE
Google	Detected
Antiy-AVL	Trojan/Win32.ULPM
Kingsoft	malware.kb.b.858
Acronis	suspicious
Malwarebytes	PUP.Optional.SweetPacks
TrendMicro-HouseCall	TROJ_GEN.R002H0CEE23
Rising	Trojan.Generic@AI.81 (RDML:7wiXO2dFlx+KCM0b/20OgQ)
Ikarus	PUA.SweetIM
MaxSecure	Trojan.Malware.3411146.susgen
Fortinet	W32/ULPM.16C0!tr
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS

How to remove PUP.Optional.SweetPacks?

PUP.Optional.SweetPacks removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X