» DrvUpdater.exe
Overview
Analysis
File Details
Behaviors (1)

DrvUpdater.exe

DRP Su Updater

Kuzyakov Artur Vyacheslavovich IP

The application DrvUpdater.exe by Kuzyakov Artur Vyacheslavovich IP has been detected as a potentially unwanted program by 18 anti-malware scanners. This is the uninstaller utility registered in the Windows Control Panel for the program DriverPack Solution Updater by DriverPack Solution.

File name:

DrvUpdater.exe

Publisher:

Kuzyakov Artur Vyacheslavovich IP (signed and verified)

Product:

DRP Su Updater

Version:

0, 0, 25, 0

MD5:

4c4e26bb990e04a83454303f77e57d35

SHA-1:

18554ffad635430e7d2c919ed996903a87ce94b8

SHA-256:

3a4a08ac5b0b3f7025798effbf63d735f2115a21b709d886b9f5c1ee9ddc2c0f

Scanner detections:

18 / 68

Status:

Potentially unwanted

Analysis date:

4/26/2024 11:39:07 AM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Trojan.Kryptik

7.1.1

AhnLab V3 Security

Win32/Kashu.E

2014.07.11

avast!

Win32:Sality

2014.9-160205

AVG

Win32/DH{gRKBEwN5ATYgJCIlDw}

2017.0.2842

Bkav FE

HW32.CDB

1.3.0.4246

Clam AntiVirus

Win.Worm.Chir-1403

0.98/21511

IKARUS anti.virus

Win32.SuspectCrc

t3scan.1.9.5.0

K7 AntiVirus

Virus

13.180.12683

McAfee

Artemis!D519458155B6

5600.6498

Microsoft Security Essentials

Threat.Undefined

1.177.2145.0

Norman

Sality.ZHB

11.20160205

Qihoo 360 Security

Malware.QVM19.Gen

1.0.0.1015

Reason Heuristics

Win32.Generic

16.2.5.13

SUPERAntiSpyware

Trojan.Agent/Gen-Sisron

9342

Trend Micro House Call

TROJ_FORUCON.BMC

7.2.36

Trend Micro

TROJ_FORUCON.BMC

10.465.05

VIPRE Antivirus

Trojan.Win32.Generic

41826

ViRobot

Trojan.Win32.S.Agent.196256.A[h]

2014.3.20.0

File size:

555.2 KB (568,504 bytes)

Product version:

0, 0, 25, 0

DriverPack Solution

Original file name:

DrvUpdater.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\roaming\drpsu\drvupdater.exe

Digital Signature

Signed by:

Kuzyakov Artur Vyacheslavovich IP

Authority:

COMODO CA Limited

Valid from:

2/28/2012 3:00:00 AM

Valid to:

2/28/2015 2:59:59 AM

Subject:

CN=Kuzyakov Artur Vyacheslavovich IP, O=Kuzyakov Artur Vyacheslavovich IP, STREET=24K1 Tashkentskaya ul., L=Moscow, S=Moscow, PostalCode=109472, C=RU

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

008ED5EE3D985B31936DA24E4A4CC34419

File PE Metadata

Compilation timestamp:

4/28/2011 12:25:13 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

12288:U9KtL+fVNID3Ueko6oSl09K99K99K99K99K99K99K99K99KD:gdNg3ioM

Entry address:

0x65BA0

Entry point:

60, BE, 00, F0, 43, 00, 8D, BE, 00, 20, FC, FF, 57, 89, E5, 8D, 9C, 24, 80, C1, FF, FF, 31, C0, 50, 39, DC, 75, FB, 46, 46, 53, 68, 75, 33, 06, 00, 57, 83, C3, 04, 53, 68, 9B, 6B, 02, 00, 56, 83, C3, 04, 53, 50, C7, 03, 03, 00, 00, 00, 90, 90, 90, 90, 90, 55, 57, 56, 53, 83, EC, 7C, 8B, 94, 24, 90, 00, 00, 00, C7, 44, 24, 74, 00, 00, 00, 00, C6, 44, 24, 73, 00, 8B, AC, 24, 9C, 00, 00, 00, 8D, 42, 04, 89, 44, 24, 78, B8, 01, 00, 00, 00, 0F, B6, 4A, 02, 89, C3, D3, E3, 89, D9, 49, 89, 4C, 24, 6C, 0F, B6, 4A... 
[+]

Code size:

160 KB (163,840 bytes)

Program Uninstaller

Program name:

DriverPack Solution Updater

Display publisher:

DriverPack Solution

Display version:

0.0.25

Uninstall string:

C:\users\{user}\appdata\roaming\drpsu\drvupdater.exe \uninstall

Remove DrvUpdater.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.