home

CpqsetVer.exe

Hewlett-Packard CpqsetVer

The executable CpqsetVer.exe has been detected as malware by 9 anti-virus scanners. The program is a setup application that uses the InstallShield Setup installer, however the file is not signed with an authenticode signature from a trusted source.
Publisher:
Hewlett-Packard*  (Invalid match)

Product:
Hewlett-Packard CpqsetVer

Description:
CpqsetVer

Version:
4, 20, 7, 1

MD5:
ab1c7c05d19f2d485280fcd5d2c57615

SHA-1:
9a8157b659d1bf8acd534ab8e58bf3debd905ca4

Scanner detections:
9 / 68

Status:
Malware

Analysis date:
5/8/2024 11:12:37 AM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
UnclassifiedMalware
6020

Emsisoft Anti-Malware
Trojan-Dropper.Agent!IK
8.14.09.19.07

ESET NOD32
Win32/Agent.CAFVEUT (variant)
8.5435

IKARUS anti.virus
Trojan-Dropper.Agent
t3scan.1.1.88.0

K7 AntiVirus
Trojan
13.63.2470

McAfee
Generic.dx
5600.7045

Panda Antivirus
Suspicious file
14.09.19.07

Prevx
High Risk Worm
3.0

Trend Micro House Call
TROJ_GEN.R47H1EA
7.2.220

File size:
40 KB (40,960 bytes)

Product version:
4, 20, 7, 1

Copyright:
Copyright © 2004-2005

Original file name:
CpqsetVer.exe

File type:
Executable application (Win32 EXE)

Installer:
InstallShield Setup

Common path:
C:\Program Files\hpq\default settings\cpqsetver.exe

File PE Metadata
Compilation timestamp:
2/18/2005 4:01:45 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
384:XmotnkK10TlQCxfrwntajXjDWLi9k+7y/8S9EblZUa:Bnk5TBPJn7qTublL

Entry address:
0x1010

Entry point:
55, 8B, EC, 6A, FF, 68, A0, 50, 40, 00, 68, DC, 1C, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, 0C, 50, 40, 00, 33, D2, 8A, D4, 89, 15, E4, 84, 40, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, E0, 84, 40, 00, C1, E1, 08, 03, CA, 89, 0D, DC, 84, 40, 00, C1, E8, 10, A3, D8, 84, 40, 00, 33, F6, 56, E8, 16, 0B, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, E1, 07, 00, 00, FF, 15, 08, 50, 40, 00, A3, D8, 89, 40, 00, E8...
 
[+]

Entropy:
3.4845

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
16 KB (16,384 bytes)

Remove CpqsetVer.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.