Think Before You Click: EPI PDF’s Hidden Extras

McAfee research identifies EPI PDF Editor as a deceptive installer that bundles a chromium-based browser (EPIbrowser) and imports browser settings by default, classifying it as a Potentially Unwanted Program (PUP); the report includes technical analysis (installer behavior, privacy-policy mismatch, install locations), screenshots, a prevalence heatmap showing high encounters (e.g., ~118,000 US McAfee device encounters), and IOCs including multiple MSI filenames and SHA256 c2d1ac2511eb2749cdc7ae889d484c246d3bd1e740725dc4dd2813c4b4d05c7b, plus user mitigation advice (custom install, trusted sources, check browser settings).