Should I block it?
Yes, 98% block recommendation.
Possible reasons:
Multiple malware detections
Performance resource utilization
Additional versions
(Note, Hoolapp publishes each variation of this file with the same version, but the hashes are unique.)
Relationships
updatetask.exe
By Hoolapp (Signed)
| MD5: | 8272d32ace355e4d4e85cb78530ae962 |
| SHA1: | f94eefc27cdaa59450802e72a8a1dcd4ba6d50c6 |
| SHA256: | 4bcf5a8e3de7e64f7fee6dc113a7fc4f3ec4b12df42621a60abcb3d94b75079b |
Warning 8 antivirus scanners has detected malware.
Overview
updatetask.exe is malware that executes as a process with the local user's privileges. This is typically installed with the program Extended Update published by Hoolapp and is most likely removed by most users once installed (79% removed). The file is digitally signed by Hoolapp which was issued by the COMODO CA Limited certificate authority (CA).
Details
| File name: | updatetask.exe |
| Typical file path: | C:\users\user\appdata\roaming\hoolappforandroid\updateproc\updatetask.exe |
| Size: | 104 KB (106,496 bytes) |
| Certificate |
| Issued to: | Hoolapp |
| Authority (CA): | COMODO CA Limited |
| Digital DNA |
| File packed: | No |
| .NET CLR: | No |
More details
Programs
The following program will install this file
Extended Update is a potentially unwanted application that is triggered to run daily by bypassing Windows User Account Control (UAC).
Behaviors
Scheduled tasks
- The task 'Price Meter Updater' runs daily in the path '\Price Meter Updater'
- The task 'Speedial' runs daily in the path '\Speedial'
- The task 'PriceMeterUpdater' runs daily in the path '\PriceMeterUpdater'
- The task 'DigitalSite' runs daily in the path '\DigitalSite'
- The task 'MetaCrawler' runs daily in the path '\MetaCrawler'
- The task 'UpdaterEX' runs daily in the path '\UpdaterEX'
- The job 'MySearchDial' runs daily in the path '\MySearchDial'
- The task 'DealPly' runs daily in the path '\DealPly'
- The job 'At1' runs weekly in the path 'C:\WINDOWS\Tasks\At1.job'
- The job 'DSite' runs daily in the path '\DSite'
- The task 'Hoolapp For Android' runs daily in the path '\Hoolapp For Android'
- The job 'Funmoods' runs daily in the path '\Funmoods'
- Entry path '\Funmoods'
- Entry path '\Hoolapp For Android'
Malware detections
Based on 40+ industry antivirus scanners, 8 of them detected the following malware.
| Antivirus engine | Engine version | Detection |
| Comodo Internet Security |
17106 |
Application.Win32.Dealply.~A |
| Emsisoft Anti-Malware |
3.0.0.589 |
Adware.DealPly.D (B) |
| ESET NOD32 |
7.8916 |
a variant of Win32/DealPly.F |
| F-Secure |
11.0.19100.45 |
Trojan.Agent.BAOX |
| G Data |
13.10.22 |
Adware.DealPly.D |
| Sophos |
4.93.0 |
Generic PUA PJ |
| Vba32 AntiVirus |
3.12.24.3 |
SScope.Trojan.Kriptik.8607 |
| VIPRE Antivirus |
22388 |
Trojan.Win32.Generic!BT |
Distribution by Windows OS
| OS version | distribution |
| Windows 7 Home Premium |
26.76% |
|
| Windows 7 Ultimate |
18.31% |
|
| Microsoft Windows XP |
12.68% |
|
| Windows 8.1 |
8.45% |
|
| Windows 8 |
8.45% |
|
| Windows Vista Home Premium |
5.63% |
|
| Windows 8 Pro |
4.23% |
|
| Windows 7 Professional |
4.23% |
|
| Windows 7 Home Basic |
2.82% |
|
| Windows 8.1 Pro with Media Center |
1.41% |
|
| Windows 8.1 Enterprise |
1.41% |
|
| Windows 8.1 Single Language |
1.41% |
|
| Windows Developer Preview |
1.41% |
|
| Windows 8.1 Single Language Preview |
1.41% |
|
| Windows 8 Pro with Media Center |
1.41% |
|
Distribution by country
United States installs about 30.99% of updatetask.exe.
Distribution by PC manufacturer
| PC Manufacturer | distribution |
| Dell |
19.78% |
|
| Acer |
17.58% |
|
| Lenovo |
13.19% |
|
| Hewlett-Packard |
13.19% |
|
| ASUS |
10.99% |
|
| Toshiba |
8.79% |
|
| GIGABYTE |
4.40% |
|
| Samsung |
3.30% |
|
| American Megatrends |
3.30% |
|
| MSI |
2.20% |
|
| Sony |
2.20% |
|
| Sahara |
1.10% |
|
