ChromsteraPublic PUP Chromnius Analysis

PUP Chromnius
Updated on 2023-09-18 (9 months ago)
Checked by Online Virus Scanner
Online Virus Checkerv.1.0.139.174
DB Version:2023-09-18 14:02:12

PUP.Win32.Chromnius.dg!c

Chromnius is a browser hijacker application that uses a customized version of Google's Chromium-based browser, claiming to enhance online security by blocking pop-ups and tracker cookies. However, it often redirects users to a fake search engine called Chromnius Search, which ultimately relies on legitimate search engines like Yahoo for search results, potentially compromising users' privacy and online experience.

FileChromsteraPublic
Checked2023-09-18 11:56:04
MD54bb331ead48449e15ff9aa51fee8fa25
SHA1113bffa93601f83ea002317c2f9dd055640cf56c
SHA2562ab2a97ce09791d77c39da25b974384da6ad9c61f63f4beabfe2f0eddecd73ff
SHA5128e76046d447b1319cc1503a61e6c54baba6b09233b07a4ef51c04969c874781d41a1eb26e534eb061e9cbfe564512225f4b331fb0a74aaf3379bd30d1ad6e80d
Imphash21314122cd4542a6b9b297f52a87acbe
File Size7262528 bytes

PUP.Win32.Chromnius.dg!c Removal

PUP.Win32.Chromnius.dg!c Removal

Gridinsoft has the capability to identify and eliminate PUP.Win32.Chromnius.dg!c without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

Signers

GlobalSignGlobalSign nv-sa (BE)
GlobalSign Code Signing Root R45GlobalSign nv-sa (BE)
GlobalSign GCC R45 CodeSigning CA 2020Dragon Boss Solutions LLC (AE)
VerificationOK

File Version Information

CompanyNameChromstera Browser
FileDescriptionChromstera Browser Installer
FileVersion1.0
InternalNameChromsteraPublic
LegalCopyrightCopyright (C) 2023 Chromstera Browser
OriginalFileNameChromsteraPublic.exe
ProductNameChromstera Browser
ProductVersion1.0
Translation0x0409 0x04b0

Portable Executable Info

5e172c0dc3b3b45ca039c9e793a07b29
a0944f9361276e2a5e874864a5c88639
f8e2eae6b696c6cc
Image Base:0x00400000
Entry Point:0x005e0862
Compilation:2023-07-27 09:36:39
Checksum:0x006f2bc4 (Actual: 0x006f2bc4)
OS Version:6.0
PDB Path:C:\ReleaseAI\win\Release\stubs\x86\ExternalUi.pdb
PEiD:PE32 executable (GUI) Intel 80386, for MS Windows
Sign:OK
Sections:5
Imports: KERNEL32,
Exports: 0
Resources:44

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
.text 0x00001000 0x0026acb6 0x0026ae00 6609ee5ad35366535f89171104fd9407 6.45
.rdata 0x0026c000 0x0008f55a 0x0008f600 82a48c8eed166a4419b55b922166495d 4.60
.data 0x002fc000 0x0000d240 0x00003c00 624471f60c55363d0bdc9e3921a90c7e 4.77
.rsrc 0x0030a000 0x000298b4 0x00029a00 0541a6101798a79b746007837d07f229 5.19
.reloc 0x00334000 0x00028bec 0x00028c00 7704ec72484064d3d713def4a99cb43b 6.51

Leave a comment*

Share your thoughts or insights about this file. Do you align with our conclusion?

*Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Please Wait...

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Gridinsoft Anti-Malware