» hddreg.exe
Overview
Analysis
File Details

hddreg.exe

NGO

The executable hddreg.exe has been detected as malware by 17 anti-virus scanners.

File name:

hddreg.exe

Publisher:

NGO (signed and verified)

MD5:

182961dbb3969de8b7a3df9e44a1f7d5

SHA-1:

6e68ae2f74aa83a7f241b2defaf8e4e48297d1bf

SHA-256:

1cb9cf2f382aa35240bc4891b682dc658d262b9b10b7c867ae650336da977708

Scanner detections:

17 / 68

Status:

Malware

Analysis date:

1/5/2026 12:49:33 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Packer.RLPack.D.liX@ayTKcej

892

Avira AntiVirus

TR/Crypt.XPACK.Gen

7.11.168.134

AVG

Cryptic

2015.0.3370

Bitdefender

Gen:Packer.RLPack.D.liX@ayTKcej

1.0.20.1195

Bkav FE

W32.Clodeec.Trojan

1.3.0.4959

Comodo Security

UnclassifiedMalware

19266

Emsisoft Anti-Malware

Gen:Packer.RLPack.D.liX@ayTKcej

8.14.08.27.08

F-Prot

W32/Heuristic-210

v6.4.7.1.166

F-Secure

Gen:Packer.RLPack.D.liX@ayTKcej

11.2014-27-08_4

G Data

Gen:Packer.RLPack.D.liX@ayTKcej

14.8.24

IKARUS anti.virus

Gen.Packer.RLPack

t3scan.1.7.5.0

McAfee

Artemis!182961DBB396

5600.7026

MicroWorld eScan

Gen:Packer.RLPack.D.liX@ayTKcej

15.0.0.717

NANO AntiVirus

Trojan.Win32.XPACK.byywfq

0.28.2.61721

Panda Antivirus

Trj/CI.A

14.08.27.08

Qihoo 360 Security

HEUR/Malware.QVM18.Gen

1.0.0.1015

VIPRE Antivirus

Packed.Win32.NSAnti.r

32420

File size:

185.8 KB (190,280 bytes)

File type:

Executable application (Win32 EXE)

Digital Signature

Signed by:

NGO

Authority:

NGO

Valid from:

5/23/2010 7:32:06 PM

Valid to:

12/31/2039 8:59:59 PM

Subject:

CN=NGO

Issuer:

CN=NGO

Serial number:

6AB7464FF568EC874F545074F7364BC0

File PE Metadata

Compilation timestamp:

9/10/1987 3:27:18 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

5.12

CTPH (ssdeep):

3072:XQcd10j2eMeOl6P/PfVzhZoCN/fFpZTD34JOLfliio/l7sDCFXSTi1f:Xr62PM/F1ZtfFpZTD4JO5iio9oDC+ef

Entry address:

0x290867

Entry point:

B8, 00, 00, 00, 00, 60, 0B, C0, 74, 68, E8, 00, 00, 00, 00, 58, 05, 53, 00, 00, 00, 80, 38, E9, 75, 13, 61, EB, 45, DB, 2D, 37, 00, 00, 00, FF, FF, FF, FF, FF, FF, FF, FF, 3D, 40, E8, 00, 00, 00, 00, 58, 25, 00, F0, FF, FF, 33, FF, 66, BB, 19, 5A, 66, 83, C3, 34, 66, 39, 18, 75, 12, 0F, B7, 50, 3C, 03, D0, BB, E9, 44, 00, 00, 83, C3, 67, 39, 1A, 74, 07, 2D, 00, 10, 00, 00, EB, DA, 8B, F8, B8, 00, 00, 00, 00, 03, C7, B9, 00, 00, 00, 00, 03, CF, EB, 0A, B8, 00, 00, 00, 00, B9, 00, 00, 00, 00, 50, 51, E8, 84... 
[+]

Packer / compiler:

Themida 1.8.x.x

Remove hddreg.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.