home

default printer.hta

The file default printer.hta has been detected as malware by 3 anti-virus scanners. It runs as a scheduled task under the Windows Task Scheduler triggered daily at a specified time.
MD5:
2a325e7e5e4e9b404be86c9e53586f66

SHA-1:
8693d3452079b5d079a6c1cf6402f5c69bc86969

SHA-256:
1b80e583b94229320a23454dae5482d863a633d8c0db7d70f666d4da55c2023f

Scanner detections:
3 / 68

Status:
Malware

Analysis date:
5/1/2024 9:24:53 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
HTML:HTA-F [Trj]
160917-0

ESET NOD32
HTML/Agent.AK trojan
6.3.12010.0

Kaspersky
Trojan.JS.Agent
15.0.2.529

File size:
4.8 KB (4,964 bytes)

Common path:
C:\users\{user}\appdata\roaming\microsoft\windows\printer shortcuts\default printer.hta

File PE Metadata
OS bitness:
Win64

Scheduled Task
Task name:
{7315BD3E-B5FA-CD85-4187-70044C54EC3A}

Trigger:
Daily (Runs daily at 8:22 PM)


Remove default printer.hta - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.