home

DWPremium.exe

DWPremium

DirtyWindows Softwares

The executable DWPremium.exe has been detected as malware by 8 anti-virus scanners.
Publisher:
DirtyWindows Softwares

Product:
DWPremium

Version:
1.3.0.0

MD5:
77c38c913180ea6184844911012ed300

SHA-1:
7a33461e9984a55d5e666ca0d25dbedce29fe8f5

SHA-256:
7d493fcbddb76b21aaf3c334a1a1f9474d12f09610d5f3441d289faf39d73261

Scanner detections:
8 / 68

Status:
Malware

Analysis date:
7/13/2025 2:04:50 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
PCK/MSIL.Confuser
7.11.143.118

Baidu Antivirus
Trojan.MSIL.Confuser
4.0.3.14417

Comodo Security
UnclassifiedMalware
18107

ESET NOD32
MSIL/Packed.Confuser (variant)
8.9677

IKARUS anti.virus
Trojan-Dropper.Win32.Injector
t3scan.1.6.1.0

K7 AntiVirus
Trojan
13.176.11755

Norman
Obfuscated.gen!r
11.20140417

Trend Micro House Call
TROJ_GEN.F47V0330
7.2.107

File size:
470 KB (481,280 bytes)

Product version:
1.3.0.0

Copyright:
Copyright © DirtyWindows 2014

Original file name:
DWPremium.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\dirtywindows softwares\dwpremium\dwpremium.exe

File PE Metadata
Compilation timestamp:
3/30/2014 5:24:59 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:P6QNBqidhG+BpFn/M2mSM66leAllDAn2KG810s17vrlqejWhYZd8VL:yQNBquhJD5MDtleAlJs2c191LR3f0

Entry address:
0x5BF0E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
360 KB (368,640 bytes)

Remove DWPremium.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.