» dmgr.exe
Overview
Analysis
File Details

dmgr.exe

The executable dmgr.exe has been detected as malware by 27 anti-virus scanners.

File name:

dmgr.exe

MD5:

5b856835fb851b41cba779c68f9baf32

SHA-1:

141d80152fc60a1b64268cca8cb65ec112ae2845

SHA-256:

04607e60eefd27417a8bfe893e9b6daa41124dc85d065294a15a25179e619bd5

Scanner detections:

27 / 68

Status:

Malware

Analysis date:

4/29/2024 2:01:24 PM UTC (today)

Scan engine

Detection

Engine version

AhnLab V3 Security

Win32/Palevo.worm.72704.D

5.0.

Avira AntiVirus

TR/Crypt.ZPACK.Gen

7.9.1.42

Emsisoft A-Squared

P2P-Worm.Win32.Palevo!IK

4.5.0.41

avast!

Win32:Rimecud-B

2014.9-170313

AVG

Worm/Generic_r

2018.0.2440

Bitdefender

Worm.P2P.Palevo.A

1.0.20.360

Comodo Security

UnclassifiedMalware

2684

Dr.Web

Win32.HLLW.Lime.18

9.0.1.072

ESET NOD32

Win32/Peerfrag.BG

11.4530

Fortinet FortiGate

W32/AutoRun.FN!worm

3/13/2017

F-Prot

W32/Palevo.A

v6.4.5.1.85

F-Secure

Worm:W32/Palevo.gen!A

11.2017-13-03_2

G Data

Worm.P2P.Palevo

17.3.19

IKARUS anti.virus

P2P-Worm.Win32.Palevo

t3scan.1.1.72.0

K7 AntiVirus

Trojan.Win32.Malware.1

13.7.10.876

Kaspersky

P2P-Worm.Win32.Palevo

14.0.0.-1304

McAfee

W32/Autorun.worm.fn

5600.6096

Microsoft Security Essentials

Worm:Win32/Rimecud.B

1.163.1557.0

Norman

Autorun.ZZV

11.20170313

nProtect

Worm/W32.Palevo.72704.DQ

2009.1.8.0

Panda Antivirus

Generic Worm

17.03.13.08

Prevx

High Risk Cloaked Malware

3.0

Quick Heal

Worm.Silly

3.17.10.00

Rising Antivirus

Worm.Win32.Agent.avu

23.00.65.17311

Sophos

W32/Autorun-AIC

4.46

Trend Micro

WORM_PALEVO.AZ

10.465.13

Vba32 AntiVirus

BScope.Trojan.Palevo.1

3.12.10.11

File size:

71 KB (72,704 bytes)

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

4/29/2009 10:56:49 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

Entry address:

0x928C

Entry point:

E8, 85, 15, 00, 00, E9, 16, FE, FF, FF, E8, A3, 04, 00, 00, FF, 74, 24, 04, E8, FA, 02, 00, 00, FF, 35, 04, 20, 41, 00, E8, EA, 0D, 00, 00, 68, FF, 00, 00, 00, FF, D0, 83, C4, 0C, C3, 68, 30, 01, 41, 00, FF, 15, 1C, 00, 41, 00, 85, C0, 74, 16, 68, 20, 01, 41, 00, 50, FF, 15, 18, 00, 41, 00, 85, C0, 74, 06, FF, 74, 24, 04, FF, D0, C3, FF, 74, 24, 04, E8, D1, FF, FF, FF, 59, FF, 74, 24, 04, FF, 15, 20, 00, 41, 00, CC, 6A, 08, E8, 24, 17, 00, 00, 59, C3, 6A, 08, E8, 43, 16, 00, 00, 59, C3, 56, 8B, F0, EB, 0B... 
[+]

Code size:

56.5 KB (57,856 bytes)

Remove dmgr.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.