home

cpu2.exe

MD5:
0b0de029a06710d74b44bc381206ba50

SHA-1:
c6a63188bdc9f8694159fd20f95e175e32fe2d78

SHA-256:
9e95970b566a3ae309392ad9d672eb57f6865b88b47fefc69efdc1e823975c97

Scanner detections:
4 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/25/2024 4:55:12 PM UTC  (today)

Scan engine
Detection
Engine version

AegisLab AV Signature
W32.W.Vobfus
2.1.4+

Avira AntiVirus
TR/Crypt.XPACK.Gen
7.11.30.172

Trend Micro House Call
PAK_Generic.001
7.2.292

Trend Micro
PAK_Generic.001
10.465.19

File size:
106.9 KB (109,486 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\cpu2.exe

File PE Metadata
Compilation timestamp:
9/8/2000 3:33:29 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
1536:OZjVJNStfuVpYTb+O+XXvBRLUnVgPKpd6pSF6rYhj5vmubS9srjHKbDuBnNPIw:ONVJjVpYTaORvrjHs

Entry address:
0x1638

Entry point:
68, 08, 27, 40, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 30, C9, 0B, 44, 99, 85, D4, 11, 8D, E4, 00, C0, 4F, 30, F1, E6, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 08, 73, 76, 01, 70, 72, 6F, 6A, 65, 63, 74, 43, 50, 55, 00, 00, FF, FF, FF, FF, 00, 00, 00, 00, FF, CC, 31, 00, 16, F7, C6, 0B, 44, 99, 85, D4, 11, 8D, E4, 00, C0, 4F, 30, F1, E6, F8, C6, 0B, 44, 99, 85, D4, 11, 8D, E4, 00, C0, 4F, 30, F1, E6, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
92 KB (94,208 bytes)

Scan cpu2.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.