home

CCPClient.exe

CyberCafePro Client

CyberCafePro, Inc.

The executable CCPClient.exe, “CyberCafePro Client Software” has been detected as malware by 21 anti-virus scanners.
Publisher:
CyberCafePro, Inc.  (signed by CyberCafePro, Inc. )

Product:
CyberCafePro Client

Description:
CyberCafePro Client Software

Version:
6.03.0013

MD5:
06e3f9b8a5be717299f5191d1cb11d7c

SHA-1:
841add7a870237283442af3aa6a4d7b0e1c05e13

SHA-256:
6d9b60ddb475bd3237915185158e55cf80e5a6d1abce6b1d1e52bd0b83676531

Scanner detections:
21 / 68

Status:
Malware

Analysis date:
4/19/2024 12:21:47 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.10282929
267

Agnitum Outpost
Trojan.Pasta
7.1.1

Avira AntiVirus
TR/Rogue.10282929
7.11.213.138

Bitdefender
Trojan.Generic.10282929
1.0.20.665

Comodo Security
UnclassifiedMalware
21297

Dr.Web
BACKDOOR.Trojan
9.0.1.0133

Emsisoft Anti-Malware
Trojan.Generic.10282929
8.16.05.12.01

Fortinet FortiGate
W32/Pasta.YCM!tr
5/12/2016

F-Secure
Trojan.Generic.10282929
11.2016-12-05_5

G Data
Trojan.Generic.10282929
16.5.25

IKARUS anti.virus
Trojan.Win32.Pasta
t3scan.1.8.6.0

Kaspersky
Trojan.Win32.Pasta
14.0.0.222

McAfee
Artemis!06E3F9B8A5BE
5600.6401

MicroWorld eScan
Trojan.Generic.10282929
17.0.0.399

NANO AntiVirus
Trojan.Win32.Pasta.csmkws
0.30.0.296

Norman
Suspicious_Gen2.VVDFO
11.20160512

nProtect
Trojan/W32.Pasta.6464800
15.03.04.01

Panda Antivirus
Generic Malware
16.05.12.01

Qihoo 360 Security
Win32/Trojan.e5c
1.0.0.1015

VIPRE Antivirus
Trojan.Win32.Generic
38134

ViRobot
Trojan.Win32.A.Pasta.6464800[h]
2014.3.20.0

File size:
6.2 MB (6,464,800 bytes)

Product version:
6.03.0013

Trademarks:
CyberCafePro

Original file name:
CCPClient.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\oneroof cybercafepro client\ccpclient.exe

Digital Signature
Signed by:
CyberCafePro, Inc.

Authority:
GoDaddy.com, Inc.

Valid from:
1/6/2013 3:57:25 PM

Valid to:
12/14/2013 2:34:05 PM

Subject:
CN="CyberCafePro, Inc. ", OU="OneRoof, Inc.", O="CyberCafePro, Inc. ", L=Winnipeg, S=MB, C=CA

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
03FE0AE5476400

File PE Metadata
Compilation timestamp:
11/29/2013 4:34:26 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
196608:faIaAUAtGnrqN8MurisNy12X+3XhK2qlp6qgC/E9DPj:nUAYU1uiCgA0

Entry address:
0x45CF8

Entry point:
68, 68, F1, 55, 00, E8, EE, FF, FF, FF, 00, 00, 50, 00, 00, 00, 30, 00, 00, 00, 48, 00, 00, 00, 00, 00, 00, 00, BC, DD, 06, 36, E7, 05, 1E, 4C, A3, 16, FF, CB, A4, D5, 85, 14, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 14, 51, 70, 0A, 28, A2, 4F, 6E, 65, 52, 6F, 6F, 66, 5F, 43, 43, 50, 5F, 43, 6C, 69, 65, 6E, 74, 00, B8, 05, 14, 51, 45, 00, 28, A2, 8A, 2E, 01, 9C, 52, C8, 00, 00, 00, 98, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 01, 00, 00, 00, 56, CB, C7, 4D, CC, 46, 24, 49, A4, 96, 8E, D4, E9, DE, 31, F0...
 
[+]

Entropy:
6.3163

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
6.1 MB (6,418,432 bytes)

Windows Firewall Allowed Program
Name:
cybercafepro client


Remove CCPClient.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.