» 9222.tmp.exe
Overview
Analysis
File Details

9222.tmp.exe

The application 9222.tmp.exe has been detected as a potentially unwanted program by 15 anti-malware scanners.

File name:

9222.tmp.exe

MD5:

23408dba98fa886fde90213397d547f6

SHA-1:

f3da26008d7cdbbf8ac3320107f6c09df1f771e2

SHA-256:

85a187cc08df312a2b5e66e368b9fd870c1f0a041938366c6c864b61870f2abd

Scanner detections:

15 / 68

Status:

Potentially unwanted

Analysis date:

4/25/2024 9:53:16 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Mikey.17378

578

AVG

Generic6

2016.0.3056

Baidu Antivirus

Adware.Win32.ConvertAd

4.0.3.1576

Bitdefender

Gen:Variant.Mikey.17378

1.0.20.935

Emsisoft Anti-Malware

Gen:Variant.Mikey.17378

8.15.07.06.07

ESET NOD32

Win32/Adware.ConvertAd.TZ (variant)

9.11893

Fortinet FortiGate

Riskware/ConvertAd

7/6/2015

F-Secure

Gen:Variant.Mikey.17378

11.2015-06-07_2

G Data

Gen:Variant.Mikey.17378

15.7.25

Kaspersky

UDS:DangerousObject.Multi.Generic

14.0.0.1776

MicroWorld eScan

Gen:Variant.Mikey.17378

16.0.0.561

Panda Antivirus

Trj/Genetic.gen

15.07.06.07

Qihoo 360 Security

Win32/Trojan.Multi.daf

1.0.0.1015

Reason Heuristics

Threat.Win.Reputation.IMP

15.7.6.19

VIPRE Antivirus

Trojan.Win32.Generic

41742

File size:

126 KB (129,024 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\windows\temp\9222.tmp.exe

File PE Metadata

Compilation timestamp:

7/1/2015 12:10:50 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

3072:8VqI8TBakTDvB5b4i6Yyyy+5X0kexAu+33n3P:CoBDvBh4DYyyJX0kexAvf

Entry address:

0xBA78

Entry point:

E8, 6A, 71, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, 7D, 08, 00, 74, 2D, FF, 75, 08, 6A, 00, FF, 35, 44, FB, 41, 00, FF, 15, 4C, 90, 41, 00, 85, C0, 75, 18, 56, E8, F2, 04, 00, 00, 8B, F0, FF, 15, 18, 90, 41, 00, 50, E8, A2, 04, 00, 00, 59, 89, 06, 5E, 5D, C3, 6A, 0C, 68, 78, CD, 41, 00, E8, 08, 5F, 00, 00, 6A, 0E, E8, DA, 73, 00, 00, 59, 83, 65, FC, 00, 8B, 75, 08, 8B, 4E, 04, 85, C9, 74, 2F, A1, 8C, F2, 41, 00, BA, 88, F2, 41, 00, 89, 45, E4, 85, C0, 74, 11, 39, 08, 75, 2C, 8B, 48, 04, 89, 4A... 
[+]

Entropy:

6.3693

Code size:

93 KB (95,232 bytes)

Remove 9222.tmp.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.