home

hidcon.exe

The executable hidcon.exe has been detected as malware by 10 anti-virus scanners.
MD5:
f3a41e8e6f2c045270cbf48ed4d5c212

SHA-1:
5761e51f239b2c4e2fc2929cd1dd549398cf83e3

SHA-256:
f19152f404cae843d1227f7c70ebb49ad544178d9abefec7bc263a31217ba57f

Scanner detections:
10 / 68

Status:
Malware

Analysis date:
4/19/2024 8:32:03 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Virtu-I
160209-2

AVG
Win32/Virut
2015.0.4522

Dr.Web
Win32.Virut.56
9.0.1.05190

Emsisoft Anti-Malware
Win32.Virtob.Gen.12
10.0.0.5366

ESET NOD32
Win32/Virut.NCS virus
7.0.302.0

Kaspersky
Virus.Win32.Virut
15.0.0.562

McAfee
Virus.W32/Virut.n.gen
18.0.204.0

Microsoft Security Essentials
Threat.Undefined
1.213.6218.0

Norman
Win32.Virtob.Gen.12
03.02.2016 10:30:35

Sophos
Virus 'W32/Scribble-B'
5.23

File size:
33 KB (33,792 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\hidcon.exe

File PE Metadata
Compilation timestamp:
12/6/1997 7:38:03 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
384:f29eP5JMQSgHdRb/CgVXGFa1HPFkvZfYGmozcdiXtNe6uW2HfOkudaraTy7pdkVf:fF5WQfRjGFaYZAQcdidi/ObT5uaz

Entry address:
0x1196

Entry point:
8D, 47, 8B, 05, 83, 89, 78, D3, 68, 18, 6B, 00, 00, F8, 5A, EB, 99, 00, 00, 00, 93, 23, 39, 40, 50, 65, CA, 00, F7, C3, 00, A0, 61, 90, 19, D8, 90, 83, EA, 02, B9, C0, DE, 8C, CB, B4, 18, B1, 70, B4, C8, F6, D1, EB, AA, 00, 00, 00, 51, 87, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 6E, 20, 00, 00, 84, 20, 00, 00, 9A, 20, 00, 00, AC, 20, 00, 00, BA, 20, 00, 00, 60, 20...
 
[+]

Entropy:
7.2835

Code size:
512 Bytes (512 bytes)

Remove hidcon.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.