Multi-Device Licenses (Volume Discounts)

Change Region

English
Threat Database Malware SoftwareBundler:Win32/Besofter

SoftwareBundler:Win32/Besofter

By Sumo3000 in Malware

Threat Scorecard

Ranking: 9,825
Threat Level: 10 % (Normal)
Infected Computers: 371
First Seen: June 27, 2013
Last Seen: August 27, 2023
OS(es) Affected: Windows

SoftwareBundler:Win32/Besofter is a potentially unwanted application, which installs Internet browser extensions that may distribute other malicious programs that may incorporate malware infections. SoftwareBundler:Win32/Besofter can come packaged and installed with other malicious applications. SoftwareBundler:Win32/Besofter creates an uninstaller called 'Agent' that can be accessed from the Control Panel. While being installed, SoftwareBundler:Win32/Besofter makes system modifications by downloading harmful files. SoftwareBundler:Win32/Besofter also modifies the Windows Registry. SoftwareBundler:Win32/Besofter modifies the registry entries to ensure the file '577855134.dll' is executed as a browser helper object in Internet Explorer. SoftwareBundler:Win32/Besofteralso modifies the particular registry entry to modify Internet Explorer security settings.

File System Details

SoftwareBundler:Win32/Besofter may create the following file(s):
Expand All | Collapse All
# File Name Detections
1. %ALLUSERPROFILE%\application data\bettersoft\agent\agent.exe
2. %ALLUSERPROFILE%\application data\bettersoft\agent\577855134.dll
3. %ALLUSERPROFILE%\application data\bettersoft\agent\agent.exe._tm

Registry Details

SoftwareBundler:Win32/Besofter may create the following registry entry or registry entries:
HKEY..\..\..\..{RegistryKeys}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{14F35FFC-522A-4DD1-A07E-6B8B65C6891E}\Version "(default)" = "1.0"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AC329328-7EC4-4C34-B672-0A2B90CB9B00}\1.0\FLAGS "(default)" = "0"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AC329328-7EC4-4C34-B672-0A2B90CB9B00}\1.0 "(default)" = "runtimelib"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{662CA6E1-37D8-4C12-8586-3AC64DF96187}\TypeLib "(default)" = "{ac329328-7ec4-4c34-b672-0a2b90cb9b00}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{5B113BE7-98FF-4DA7-8441-D3AAE3836AE4}\TypeLib "(default)" = "{ac329328-7ec4-4c34-b672-0a2b90cb9b00}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{19DF2320-6A8A-4942-AC4C-C449949DFC27}\ProxyStubClsid "(default)" = "{00020424-0000-0000-c000-000000000046}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{662CA6E1-37D8-4C12-8586-3AC64DF96187} "(default)" = "iwaitabletask"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4325}\ProxyStubClsid "(default)" = "{00020424-0000-0000-c000-000000000046}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{8A2DAA70-D6C9-4BAA-B9CA-DE8A9F49CA12} "(default)" = "idownloaderror"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{8A2DAA70-D6C9-4BAA-B9CA-DE8A9F49CA12}\ProxyStubClsid "(default)" = "{00020424-0000-0000-c000-000000000046}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{14F35FFC-522A-4DD1-A07E-6B8B65C6891E}\TypeLib "(default)" = "{ac329328-7ec4-4c34-b672-0a2b90cb9b00}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{14F35FFC-522A-4DD1-A07E-6B8B65C6891E}\InprocServer32 "(default)" = "%ALLUSERPROFILE%\application data\bettersoft\agent\577855134.dll"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{14F35FFC-522A-4DD1-A07E-6B8B65C6891E} "Compatibility Flags" = "1024"
HKEY_LOCAL_MACHINEM\SOFTWARE\Classes\Interface\{19DF2320-6A8A-4942-AC4C-C449949DFC27}\TypeLib "(default)" = "{ac329328-7ec4-4c34-b672-0a2b90cb9b00}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4325}\TypeLib "(default)" = "{ac329328-7ec4-4c34-b672-0a2b90cb9b00}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4325} "(default)" = "iruntime"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{5B113BE7-98FF-4DA7-8441-D3AAE3836AE4} "(default)" = "irunningprocess"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{5B113BE7-98FF-4DA7-8441-D3AAE3836AE4}\ProxyStubClsid32 "(default)" = "{00020424-0000-0000-c000-000000000046}"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\"ProxyBypass" = "1"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{662CA6E1-37D8-4C12-8586-3AC64DF96187}\ProxyStubClsid32 "(default)" = "{00020424-0000-0000-c000-000000000046}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{14F35FFC-522A-4DD1-A07E-6B8B65C6891E} "(default)" = "runtime class"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AC329328-7EC4-4C34-B672-0A2B90CB9B00}\1.0\0\win32 "(default)" = "%ALLUSERPROFILE%\application data\bettersoft\agent\577855134.dll"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AC329328-7EC4-4C34-B672-0A2B90CB9B00}\1.0\HELPDIR "(default)" = "%ALLUSERPROFILE%\application data\bettersoft\agent"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{8A2DAA70-D6C9-4BAA-B9CA-DE8A9F49CA12}\TypeLib "(default)" = "{ac329328-7ec4-4c34-b672-0a2b90cb9b00}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{19DF2320-6A8A-4942-AC4C-C449949DFC27} "(default)" = "idownloadjob"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{19DF2320-6A8A-4942-AC4C-C449949DFC27}\ProxyStubClsid32 "(default)" = "{00020424-0000-0000-c000-000000000046}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{5B113BE7-98FF-4DA7-8441-D3AAE3836AE4}\ProxyStubClsid "(default)" = "{00020424-0000-0000-c000-000000000046}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4325}\ProxyStubClsid32 "(default)" = "{00020424-0000-0000-c000-000000000046}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{662CA6E1-37D8-4C12-8586-3AC64DF96187}\ProxyStubClsid "(default)" = "{00020424-0000-0000-c000-000000000046}"
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{8A2DAA70-D6C9-4BAA-B9CA-DE8A9F49CA12}\ProxyStubClsid32 "(default)" = "{00020424-0000-0000-c000-000000000046}"

Trending

Most Viewed

Loading...