» dup106snp.exe
Overview
Analysis
File Details

dup106snp.exe

The executable dup106snp.exe has been detected as malware by 11 anti-virus scanners.

File name:

dup106snp.exe

MD5:

efa1626ce03cf9a0787cba2d9d65d4d4

SHA-1:

57bbdf1cf6c75e0b4c72e4b5dd951281082ca691

SHA-256:

b78c655a6e170cf904fcbce35ff7938df28facb63c8b663cc165160649ae801b

Scanner detections:

11 / 68

Status:

Malware

Analysis date:

4/24/2024 5:56:40 PM UTC (today)

Scan engine

Detection

Engine version

Avira AntiVirus

SPR/Patcher.H.10

7.11.155.78

AVG

Generic18

2015.0.3334

Baidu Antivirus

Trojan.Win32.Agent

4.0.3.14102

Bkav FE

W32.Clodb18.Trojan

1.3.0.4959

ESET NOD32

Win32/HackTool.Patcher (variant)

8.9961

IKARUS anti.virus

Trojan.SuspectCRC

t3scan.1.6.1.0

McAfee

Artemis!EFA1626CE03C

5600.6990

NANO AntiVirus

Trojan.Win32.CFI.dxrjb

0.28.0.60253

Norman

Reveton.I

11.20141002

Trend Micro House Call

TROJ_GEN.F47V0326

7.2.275

VIPRE Antivirus

Trojan.Win32.Generic

30402

File size:

10 KB (10,240 bytes)

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

7/18/2004 7:15:23 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

5.12

CTPH (ssdeep):

96:dCqvBnruU92BT7tn/SvYDOuq/KLV6aH53j3/PhG4G:dCunCU92X/CTKAc3zJG4

Entry address:

0x10F2

Entry point:

6A, 00, E8, 57, 06, 00, 00, A3, 40, 3C, 40, 00, 6A, 00, 68, 1A, 11, 40, 00, 6A, 00, 6A, 01, FF, 35, 40, 3C, 40, 00, E8, B8, 05, 00, 00, 50, E8, 2A, 06, 00, 00, 55, 8B, EC, 60, 8B, 45, 08, A3, 54, 3C, 40, 00, 81, 7D, 0C, 10, 01, 00, 00, 0F, 85, B6, 00, 00, 00, 68, 4C, 30, 40, 00, 6A, 69, FF, 35, 54, 3C, 40, 00, E8, E1, 05, 00, 00, 68, B0, 30, 40, 00, 6A, 68, FF, 35, 54, 3C, 40, 00, E8, CF, 05, 00, 00, 68, 7E, 30, 40, 00, 6A, 67, FF, 35, 54, 3C, 40, 00, E8, BD, 05, 00, 00, 68, E2, 30, 40, 00, 6A, 6D, FF, 35... 
[+]

Packer / compiler:

TASM / MASM

Code size:

2 KB (2,048 bytes)

Remove dup106snp.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.