awrc.exe

Atelier Web Remote Commander

Atelier Web

The executable awrc.exe has been detected as malware by 24 anti-virus scanners.
Remove awrc.exe - Powered by Reason Core Security
Publisher:
Atelier Web

Product:
Atelier Web Remote Commander

Version:
4.7.0.470

MD5:
af5daf61476e974ff0a54e97fcef51a2

SHA-1:
fe992d2f355d41fd21e94d8f5588cfc6e0c02c0d

SHA-256:
b42923e7901dd69c9fee8e7441159679a6697295f61201416e63ee8b28baa52d

Scanner detections:
24 / 68

Status:
Malware

Analysis date:
12/7/2016 7:18:56 PM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Backdoor.Agent
7.1.1

Avira AntiVirus
BDS/Gendal.401150.1
7.11.73.90

Antiy Labs AVL
Trojan/win32.agent
2.0.3.7

avast!
Win32:Malware-gen
2014.9-140610

AVG
Delf
2015.0.3447

Bitdefender
Backdoor.Generic.401150
1.0.20.805

Comodo Security
UnclassifiedMalware
15972

Dr.Web
BackDoor.Awr.7
9.0.1.0161

Emsisoft Anti-Malware
Backdoor.Generic.401150
8.14.06.10.03

ESET NOD32
Win32/Delf.FSDGUTN (variant)
8.8240

F-Secure
Backdoor.Generic.401150
11.2014-10-06_3

G Data
Backdoor.Generic.401150
14.6.22

IKARUS anti.virus
Backdoor.SuspectCRC
t3scan.2.0.0.0

K7 AntiVirus
Riskware
13.164.8543

K7 Gateway Antivirus
Trojan
13.12.7.0.8

McAfee
Artemis!AF5DAF61476E
5600.7103

McAfee Web Gateway
Heuristic.LooksLike.Win32.Suspicious.J
7.7103

MicroWorld eScan
Backdoor.Generic.401150
15.0.0.483

NANO AntiVirus
Trojan.Win32.Awr.zdgaz
0.24.0.51813

Norman
Troj_Generic.GLZWB
11.20140610

nProtect
Backdoor.Generic.401150
13.04.18.03

Panda Antivirus
W32/Gaobot.OXI.worm
14.06.10.03

Sophos
Mal/Generic-S
4.87

VIPRE Antivirus
Trojan.Win32.Generic
16968

Remove awrc.exe - Powered by Reason Core Security
File size:
2 MB (2,072,576 bytes)

Product version:
4.7

Copyright:
(c) 2001-2004, AtelierWeb Software

Original file name:
Atelier Web Remote Commander

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:c8wPCC3WF/rS+98VafPC2xJPwV9QCAw50YvvZ0tBV9V:VwPCqCB98VafPC2x49QCAwX

Entry address:
0x167994

Entry point:
55, 8B, EC, 83, C4, F4, B8, E4, 72, 56, 00, E8, 40, F7, E9, FF, A1, E4, A2, 5B, 00, 8B, 00, E8, 00, BB, EE, FF, A1, E4, A2, 5B, 00, 8B, 00, BA, 08, 7A, 56, 00, E8, F3, B6, EE, FF, A1, E4, A2, 5B, 00, 8B, 00, 83, C0, 40, BA, 18, 7A, 56, 00, E8, 1B, C4, E9, FF, 8B, 0D, 48, A2, 5B, 00, A1, E4, A2, 5B, 00, 8B, 00, 8B, 15, A4, 88, 54, 00, E8, DB, BA, EE, FF, A1, E4, A2, 5B, 00, 8B, 00, E8, 4F, BB, EE, FF, E8, E2, C1, E9, FF, 00, 00, FF, FF, FF, FF, 04, 00, 00, 00, 41, 57, 52, 43, 00, 00, 00, 00, FF, FF, FF, FF...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1.4 MB (1,469,440 bytes)

Remove awrc.exe - Powered by Reason Core Security