home

google-chrome.exe

The application google-chrome.exe has been detected as a potentially unwanted program by 16 anti-malware scanners.
Description:
Installer

Version:
4.0.6.27

MD5:
717afd4ebea12550fe92944e4d8cbe6c

SHA-1:
35ffa2716d55573d0293412916977ebebeb9ff4e

SHA-256:
4be6e3af0c99d9928323d8fa34b60a0c7749d8667b89d6ece644437730ee388f

Scanner detections:
16 / 68

Status:
Potentially unwanted

Analysis date:
4/26/2024 7:38:12 PM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
PUA.DomaIQ
7.1.1

Avira AntiVirus
PUA/DomaIQ.Gen
7.11.215.236

avast!
Win32:DomaIQ-AL [PUP]
150521-0

AVG
Adware DomaIQ.FZ
2014.0.4311

Baidu Antivirus
Adware.Win32.DomaIQ
4.0.3.15523

ESET NOD32
MSIL/DomaIQ.G potentially unwanted (variant)
9.11300

Fortinet FortiGate
Adware/DomaIQ
5/23/2015

K7 AntiVirus
Trojan
13.200.15223

Kaspersky
not-a-virus:AdWare.MSIL.DomaIQ
15.0.0.543

Malwarebytes
PUP.Optional.DomaIQ
v2015.05.23.10

McAfee
Trojan.Artemis!717AFD4EBEA1
17.6.569.0

NANO AntiVirus
Riskware.Win32.DomaIQ.csooww
0.30.0.296

Quick Heal
AdWare.MSIL.r3 (Not a Virus)
5.15.14.00

Sophos
Generic PUA DF
4.98

Vba32 AntiVirus
AdWare.MSIL.DomaIQ
3.12.26.3

VIPRE Antivirus
Threat.4783262
40432

File size:
6 KB (6,144 bytes)

Product version:
4.0.6.27

Original file name:
setup.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\861f655bacee44cfbd5d6917b591ad48\google-chrome.exe

File PE Metadata
Compilation timestamp:
10/15/2013 4:22:45 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
96:w7x4GFlhgpfbhTX/Rfo/EsL2fMA3ILBOCCCyhaxhzgWT:wxVfKbFX/RASX3JCzyEHF

Entry address:
0x2F1E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
4.3472

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
4 KB (4,096 bytes)

Remove google-chrome.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.