home

antiu v1.2.exe

AntiAuturun

DSW Lab

Publisher:
DSW Lab

Product:
AntiAuturun

Description:
Anti Spyware Toolkit AntiAutoRun

Version:
1, 2, 0, 0

MD5:
2e904c5af5f63b47ec80260508d46f1a

SHA-1:
d342479554d36caf6c7eb199c849effd24844d5c

SHA-256:
2472d17d611c669ca2a2983a53e912e3028076e7b342c32986b522c045d13cc3

Scanner detections:
6 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/14/2025 7:21:06 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Suspicious
7.1.1

Bkav FE
HW32.CDB
1.3.0.4613

Comodo Security
UnclassifiedMalware
17616

IKARUS anti.virus
Backdoor.Win32.Prosti
t3scan.2.2.29

McAfee
Artemis!2E904C5AF5F6
5600.7158

Quick Heal
(Suspicious) - DNAScan
4.14.12.00

File size:
144.8 KB (148,292 bytes)

Product version:
1, 2, 0, 0

Copyright:
Copyright (C) 2005 - 2006 DSW Lab Corporation,Inc. All Rights Reserved.

Original file name:
AntiAuturun.exe

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
2/2/2027 1:49:39 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
3072:i3uieRGo5CKfneAnyWZ00jWgmyfQlSli7vqA2lzcN/:EuieRf57feuhK8QlSlEB

Entry address:
0x23000

Entry point:
60, E8, 01, 00, 00, 00, 72, 83, 04, 24, 06, C3, 41, 75, 02, 87, D1, F9, D3, D6, F8, E8, 01, 00, 00, 00, 7A, 83, C4, 04, 66, 2B, CF, EB, 01, 7D, D3, C6, E8, 01, 00, 00, 00, 9A, 83, 04, 24, 06, C3, 66, C1, F9, FE, E8, 01, 00, 00, 00, 75, 83, C4, 04, 8B, CD, E8, 01, 00, 00, 00, 74, 83, 04, 24, 06, C3, 76, 04, 66, C1, F9, F7, 7E, 03, 7F, 01, 77, C1, D2, 04, EB, 01, 77, 46, 7E, 03, 7F, 01, E8, E9, 04, 00, 00, 00, 66, C1, DA, 06, B8, 3D, 31, 42, 00, 50, E8, 01, 00, 00, 00, EA, 83, C4, 04, 58, E9, 02, 00, 00, 00...
 
[+]

Entropy:
7.4465

Packer / compiler:
ASPack v1.08.04

Code size:
236 KB (241,664 bytes)

Scan antiu v1.2.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.