» compilerfrozenthumbnail.exe
Overview
Analysis
File Details
Behaviors (1)

compilerfrozenthumbnail.exe

The application compilerfrozenthumbnail.exe has been detected as a potentially unwanted program by 24 anti-malware scanners. It runs as a separate (within the context of its own process) windows Service named “CompilerFrozenThumbnail.exe”.

File name:

MD5:

6ff772cc147dea06fae45cd4ff136b4d

SHA-1:

7ea96b40b059c20de292e08ff4a12df61225b2aa

SHA-256:

145302a161f4e0bc72e6e0df55ac8348ae369706910ef554c3a17be0b750ee05

Scanner detections:

24 / 68

Status:

Potentially unwanted

Analysis date:

4/23/2024 12:08:36 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Application.Generic.660354

832

AegisLab AV Signature

W32.Virut

2.1.4+

Agnitum Outpost

PUA.Pirrit

7.1.1

AhnLab V3 Security

PUP/Win32.PirritSuggestor

2014.07.07

Avira AntiVirus

SPR/Tool.110628

7.11.158.178

avast!

Win32:Rootkit-gen [Rtk]

141025-0

AVG

Adware Generic5.AXXL

2014.0.4040

Bitdefender

Application.Generic.660354

1.0.20.1490

Clam AntiVirus

Win.Trojan.Application-497

0.98/21411

Comodo Security

Application.Win32.Pirrit.B

18794

Dr.Web

Adware.Downware.5947

9.0.1.05190

Emsisoft Anti-Malware

Adware.Agent.OMS

8.14.10.25.09

ESET NOD32

Win32/AdWare.Pirrit.B application

7.0.302.0

F-Prot

W32/A-27620bc8

v6.4.7.1.166

F-Secure

Application.Generic.660354

11.2014-25-10_7

G Data

Application.Generic.660354

14.10.24

IKARUS anti.virus

PUA.Win32.Pirrit

t3scan.1.6.1.0

K7 AntiVirus

Adware

13.180.12626

Microsoft Security Essentials

Threat.Undefined

1.187.526.0

MicroWorld eScan

Application.Generic.660354

15.0.0.894

NANO AntiVirus

Riskware.Win32.Downware.dcikri

0.28.2.62841

nProtect

Adware.Agent.OMS

14.10.24.01

Reason Heuristics

Threat.Win.Reputation.IMP

14.10.25.21

VIPRE Antivirus

Threat.4150696

29708

File size:

108 KB (110,628 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\local\compilerfrozenthumbnail\compilerfrozenthumbnail.exe

File PE Metadata

Compilation timestamp:

6/24/2014 2:42:33 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

2.23

CTPH (ssdeep):

3072:Ezmfy/VsFQ+ebfPoP5CKqQMMZDFkT3TDgTS:EzGyt5+2fAAKqLjTDgO

Entry address:

0x1570

Entry point:

83, EC, 1C, C7, 04, 24, 01, 00, 00, 00, FF, 15, E0, B5, 41, 00, E8, FB, FB, FF, FF, 8D, 74, 26, 00, 8D, BC, 27, 00, 00, 00, 00, 83, EC, 1C, C7, 04, 24, 02, 00, 00, 00, FF, 15, E0, B5, 41, 00, E8, DB, FB, FF, FF, 8D, 74, 26, 00, 8D, BC, 27, 00, 00, 00, 00, A1, 10, B6, 41, 00, FF, E0, 89, F6, 8D, BC, 27, 00, 00, 00, 00, A1, 00, B6, 41, 00, FF, E0, 90, 90, 90, 90, 90, 90, 90, 90, 90, 55, 89, E5, 83, EC, 18, C7, 04, 24, 00, 50, 41, 00, E8, 6E, F2, 00, 00, BA, B8, EF, 40, 00, 83, EC, 04, 85, C0, 74, 15, C7, 44... 
[+]

Entropy:

6.2961

Code size:

75.5 KB (77,312 bytes)

Service

Display name:

CompilerFrozenThumbnail.exe

Type:

Win32OwnProcess

Remove compilerfrozenthumbnail.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.