» antiu v1.2.exe
Overview
Analysis
File Details

antiu v1.2.exe

AntiAuturun

DSW Lab

File name:

antiu v1.2.exe

Publisher:

DSW Lab

Product:

AntiAuturun

Description:

Anti Spyware Toolkit AntiAutoRun

Version:

1, 2, 0, 0

MD5:

2e904c5af5f63b47ec80260508d46f1a

SHA-1:

d342479554d36caf6c7eb199c849effd24844d5c

SHA-256:

2472d17d611c669ca2a2983a53e912e3028076e7b342c32986b522c045d13cc3

Scanner detections:

6 / 68

Status:

Inconclusive (not enough data for an accurate detection)

Analysis date:

4/26/2024 11:48:50 PM UTC (a few moments ago)

Scan engine

Detection

Engine version

Agnitum Outpost

Suspicious

7.1.1

Bkav FE

HW32.CDB

1.3.0.4613

Comodo Security

UnclassifiedMalware

17616

IKARUS anti.virus

Backdoor.Win32.Prosti

t3scan.2.2.29

McAfee

Artemis!2E904C5AF5F6

5600.7158

Quick Heal

(Suspicious) - DNAScan

4.14.12.00

File size:

144.8 KB (148,292 bytes)

Product version:

1, 2, 0, 0

Original file name:

AntiAuturun.exe

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

2/2/2027 1:49:39 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

3072:i3uieRGo5CKfneAnyWZ00jWgmyfQlSli7vqA2lzcN/:EuieRf57feuhK8QlSlEB

Entry address:

0x23000

Entry point:

60, E8, 01, 00, 00, 00, 72, 83, 04, 24, 06, C3, 41, 75, 02, 87, D1, F9, D3, D6, F8, E8, 01, 00, 00, 00, 7A, 83, C4, 04, 66, 2B, CF, EB, 01, 7D, D3, C6, E8, 01, 00, 00, 00, 9A, 83, 04, 24, 06, C3, 66, C1, F9, FE, E8, 01, 00, 00, 00, 75, 83, C4, 04, 8B, CD, E8, 01, 00, 00, 00, 74, 83, 04, 24, 06, C3, 76, 04, 66, C1, F9, F7, 7E, 03, 7F, 01, 77, C1, D2, 04, EB, 01, 77, 46, 7E, 03, 7F, 01, E8, E9, 04, 00, 00, 00, 66, C1, DA, 06, B8, 3D, 31, 42, 00, 50, E8, 01, 00, 00, 00, EA, 83, C4, 04, 58, E9, 02, 00, 00, 00... 
[+]

Entropy:

7.4465

Packer / compiler:

ASPack v1.08.04

Code size:

236 KB (241,664 bytes)

Scan antiu v1.2.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.