» dsddd.exe
Overview
Analysis
File Details

dsddd.exe

CCleaner

CZ Solution Co., Ltd.

The executable dsddd.exe has been detected as malware by 28 anti-virus scanners.

File name:

dsddd.exe

Publisher:

Piriform Ltd (signed by CZ Solution Co., Ltd. )

Product:

CCleaner

Version:

3, 16, 0, 1666

MD5:

90034f4e213bb1ff71bd279c42cc4ea4

SHA-1:

ad23679c129d2cbc52671450816bd2872d866076

SHA-256:

3cf32fcc6b3f236de7ce8c9fd1659c14f11e2fb2fd5e83bbfe6806e320bf911d

Scanner detections:

28 / 68

Status:

Malware

Analysis date:

4/26/2024 6:50:13 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Cripack.Gen.1

17.02.01

AegisLab AV Signature

W32.W.QQPass.kYLv

2.1.4+

AhnLab V3 Security

Trojan/Win32.Buzus

2016.06.04

Avira AntiVirus

TR/Agent.598016

8.3.3.4

Arcabit

Trojan.Cripack.Gen.1

1.0.0.696

avast!

Win32:GenMalicious-CM [Trj]

2014.9-170201

AVG

Injector

2018.0.2481

Bitdefender

Trojan.Cripack.Gen.1

1.0.20.160

Comodo Security

UnclassifiedMalware

25162

Dr.Web

Trojan.PWS.Panda.2401

9.0.1.032

Emsisoft Anti-Malware

Trojan.Cripack.Gen

8.17.02.01.08

ESET NOD32

Win32/Injector.AMKV (variant)

11.13591

Fortinet FortiGate

W32/Kryptik.KVE!tr

2/1/2017

F-Secure

Trojan.Cripack.Gen.1

11.2017-01-02_4

G Data

Trojan.Cripack.Gen

17.2.25

IKARUS anti.virus

Trojan-PWS.Win32.Fareit

t3scan.2.0.9.0

K7 AntiVirus

Trojan

13.227.19805

Kaspersky

Trojan-Downloader.VBS.Agent

14.0.0.-1102

McAfee

RDN/Generic.bfr!io

5600.6137

Microsoft Security Essentials

TrojanSpy:Win32/Rebhip.C

1.1.12805.0

MicroWorld eScan

Trojan.Cripack.Gen.1

18.0.0.96

NANO AntiVirus

Trojan.Win32.SpyNet.chcqmg

1.0.30.8482

Panda Antivirus

Trj/CI.A

17.02.01.08

Qihoo 360 Security

Win32/Trojan.Downloader.dce

1.0.0.1120

Rising Antivirus

Malware.Generic!VER1A71eD6V@2 (Thunder)

23.00.65.17130

Sophos

Mal/Generic-S

4.98

VIPRE Antivirus

Trojan.Win32.Generic

49860

Zillya! Antivirus

Trojan.DownloaderCRTD.Win32.1273

2.0.0.2904

File size:

578.1 KB (592,000 bytes)

Product version:

3, 16, 0, 1666

Original file name:

ccleaner.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\dsddd.exe

Digital Signature

Signed by:

CZ Solution Co., Ltd.

Authority:

VeriSign, Inc.

Valid from:

12/3/2012 1:00:00 AM

Valid to:

2/2/2015 12:59:59 AM

Subject:

CN="CZ Solution Co., Ltd. ", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="CZ Solution Co., Ltd. ", L=Xiamen, S=Fujian, C=CN

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

6E7B6395AC5B5C8A2AECC4528D9E6510

File PE Metadata

Compilation timestamp:

11/9/2011 1:13:37 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

Entry address:

0x4F1A

Entry point:

90, 90, 90, E9, A0, 10, 00, 00, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, FF, 15, 28, 60, 40, 00, 59, 83, 0D, E4, 74, 40, 00, FF, 83, 0D, E8, 74, 40, 00, FF, FF, 15, 34, 60, 40, 00, 8B, 0D, E0, 74, 40, 00, 89, 08, FF, 15, 50, 60, 40, 00, 8B, 0D, DC, 74, 40, 00, 89, 08, A1, 4C, 60, 40, 00, 8B, 00, A3, EC, 74, 40, 00, E8, 10, 01, 00, 00, 39, 1D, B8, 74, 40, 00, 75, 0C, 68, 96, 50, 40, 00, FF, 15, 48, 60... 
[+]

Packer / compiler:

Hide&Protect V1.0

Code size:

20 KB (20,480 bytes)

Remove dsddd.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.