home

DTM_2.exe

DTM_2

System Alerts

The application DTM_2.exe by System Alerts has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program Desktop Temperature Monitor by System Alerts LLC which is a potentially unwanted software program.
Publisher:
System Alerts  (signed and verified)

Product:
DTM_2

Version:
1.0.0.0

MD5:
6dcc71cf451f3a723b21d2d0a465665a

SHA-1:
69ce5de87c8ce3144e5e2c858679dba280be6183

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
5/10/2024 8:08:32 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.SystemAlerts
15.6.7.12

File size:
118.7 KB (121,504 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2014

Original file name:
DTM_2.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Documents and Settings\{user}\Desktoptemperature\dtm_2.exe

Digital Signature
Signed by:
System Alerts

Authority:
COMODO CA Limited

Valid from:
12/15/2014 7:00:00 PM

Valid to:
12/16/2015 6:59:59 PM

Subject:
CN=System Alerts, O=System Alerts, STREET=250 Park Ave Ste 504, L=Minneapolis, S=MN, PostalCode=55415, C=US

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
008E7E5AF881AA310D8C70AF506C594EA1

File PE Metadata
Compilation timestamp:
1/24/2015 1:04:55 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1536:44ui4Lyym+4Lyymm3y3EDF4LyymaHV5iP:43Lyy6LyyNDSLyy5U

Entry address:
0x162BE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.5976

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
81 KB (82,944 bytes)

The file DTM_2.exe has been discovered within the following program.

Desktop Temperature Monitor  by System Alerts LLC
The free version is ad-supported software (also known as adware) web browser plugin that displays advertisements such as coupon ads in the browser that are displayed on web pages that are not associated with the plugin or would not otherwise appear.
desktoptemperaturemonitor.com
74% remove it
 
Powered by Should I Remove It?

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):
Connects to a96-17-10-43.deploy.akamaitechnologies.com  (96.17.10.43:80)

TCP (HTTP):
Connects to a184-84-244-145.deploy.static.akamaitechnologies.com  (184.84.244.145:80)

TCP (HTTP):
Connects to a104-96-220-227.deploy.static.akamaitechnologies.com  (104.96.220.227:80)

TCP (HTTP):
Connects to stillwater-medical.org  (164.58.129.136:80)

TCP (HTTP):
Connects to a184-51-115-9.deploy.static.akamaitechnologies.com  (184.51.115.9:80)

Remove DTM_2.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.