The OneStartInstaller v4 5 241 0 50098667 msi File Malware Analysis
Gridinsoft Logo

The OneStartInstaller-v4.5.241.0_50098667.msi File Analysis

Updated 3 days ago
Checked by Malware Check
OneStartInstaller-v4.5.241.0_50098667.msi

Technical Analysis

File Name OneStartInstaller-v4.5.241.0_50098667.msi
File Type
Windows Installer
Magic Bytes Composite Document File V2 Document, Little Endian, Os: Windows, Version 10.0, MSI Installer, Security: 0, Code page: 1252, Revision Number: {BDB62F02-8CF2-4A61-8DAF-9DC2C731BE31}, Number of Words: 10, Subject: OneStart Installer, Author: OneStart.ai, Name of Creating Application: OneStart Installer, Template: ;1033, Comments: OneStart Installer 4.5.241.0, Title: Installation Database, Keywords: Installer, MSI, Database, Create Time/Date: *Bad* 0x1eef4fc0666a7722, Last Saved Time/Date: *Bad* 0x1eef4fc0666a7722, Last Printed: *Bad* 0x1eef4fc0666a7722, Number of Pages: 450
SSDEEP Hash
49152:uVOycFTznm9500zjjZ09eFOsmBBU0lPjgzixI+vGYRnAWNRWw5kQbhpP9gY0dB0R:Hycl0Q0iuWHiVPcGJLOEa2
Scanner Version 1.0.226.174
Database Version 2025-09-29 13:00:24 UTC

Suspicious File Detected

Detected by 18 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
29%
Detection Rate
4,608,000
File Size (bytes)
18/63
Engines Detected
2025-09-29
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
4d71aa288927feaae51d331c16493116
SHA1
c0db3bcc20a5e5e110bf22eff0dc7528fc2435c5
SHA256
469960964daf6666231f379604cb0cbd536b277bdb595c7ded9e8147278ba5ea
SHA512
8a6c6f605c12cfecc289eb1214bbecf93c5e61c2d49c76f530cc0ddddccfeb3f9c0be42b80eda0b1e54c2e83885d24e29cdbf33260493edde05dad331c470800

Security Engines with Detections (18 of 63)

Lionic
Adware.Win32.BrowserAssistant.2!c Malicious
MicroWorld-eScan
Trojan.Generic.37536020 Malicious
CTX
msi.adware.browserassistant Malicious
Skyhigh
Artemis!Trojan Malicious
ALYac
Trojan.Generic.37536020 Malicious
ESET-NOD32
Win64/Adware.BrowserAssistant.D.Gen Malicious
Kaspersky
not-a-virus:HEUR:AdWare.Win32.WebCompanion.gen Malicious
BitDefender
Trojan.Generic.37536020 Malicious
Tencent
Win32.AdWare.Webcompanion.Anhl Malicious
VIPRE
Trojan.Generic.37536020 Malicious
Ikarus
PUA.Apollo Malicious
GData
Win32.Malware.OneStart.B Malicious
Varist
ABAdware.OMLA-1 Malicious
Antiy-AVL
GrayWare[AdWare]/Win64.BrowserAssistant Malicious
Kingsoft
Win32.Troj.Undef.a Malicious
Arcabit
Trojan.Generic.D23CC114 Malicious
Google
Detected Malicious
Rising
[email protected] (CERT:G5A8fFudur4CNrX4FuLU2g) Malicious
45 engines reported no threats - Only engines with detections are shown above for clarity

Certificate Chain Analysis

Certificate Information
Signing Date 04:35 AM 06/13/2024 (476 days ago)
Verification Status Signed
Signers Apollo Technologies Inc; SSL.com EV Code Signing Intermediate CA RSA R3; SSL.com EV Root Certification Authority RSA R2
Counter Signers DigiCert Timestamp 2023; DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA; DigiCert Trusted Root G4; DigiCert

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

Signed

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
18 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware