» eapi.fne
Overview
Analysis
File Details

eapi.fne

File name:

eapi.fne

MD5:

9f521681c375bc5ef2a9e030a2d44f1a

SHA-1:

11ef6b9cb35618960af37070187b4460ff3edad1

SHA-256:

26918d5bfb54460f0c21a07a1cdc99568bd2ff2bd8007ffda7e3e19ed844e05f

Scanner detections:

6 / 68

Status:

Inconclusive (not enough data for an accurate detection)

Analysis date:

4/29/2024 3:06:53 PM UTC (today)

Scan engine

Detection

Engine version

F-Prot

W32/Websearch.A.gen

v6.4.5.1.85

McAfee

generic!bg.etr

5600.6097

Prevx

High Risk Cloaked Malware

3.0

Quick Heal

Win32.Trojan.BHO.oqi.5.Pack

3.17.10.00

Sophos

Mal/EncPk-NB

4.50

Vba32 AntiVirus

Trojan.Win32.BHO.oqi

3.12.12.1

File size:

316 KB (323,584 bytes)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\eapi.fne

File PE Metadata

Compilation timestamp:

9/16/2008 11:11:02 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

Entry address:

0x302A2

Entry point:

50, 56, 51, 52, 53, F8, 57, 0F, 83, A6, FE, FF, FF, 84, 47, DE, C4, 80, B3, D8, 61, 4C, A6, 3D, B8, F4, E7, 07, EE, D6, F2, 16, 70, 81, A6, 1B, 3E, BC, 3E, B6, 8A, CB, 82, DB, 81, ED, 3E, 34, 64, 29, 68, AD, 1B, DF, A4, 27, A8, 30, B8, 34, DC, A9, 2D, AD, B2, 28, 68, B1, 97, AF, 8F, 95, 24, A9, F7, 2A, 84, 36, A4, AB, 98, 2A, 65, 1D, A7, A8, 67, FC, E8, F5, 8C, FD, 98, A5, A4, 2C, 5D, AE, FF, 01, 24, 99, 26, 97, 99, A5, A4, B9, 0C, EA, 2F, F9, 9C, A8, 77, 34, E1, AD, 27, A2, 99, 23, DC, 34, 9B, A8, 67, 34... 
[+]

Entropy:

7.0318

Code size:

192 KB (196,608 bytes)

Scan eapi.fne - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.