home

ic-0.47e8f502f6c4e4.exe

Headlight Software, Inc.

The application ic-0.47e8f502f6c4e4.exe, “Change Settings that need Admun Privileges” has been detected as a potentially unwanted program by 2 anti-malware scanners.
Publisher:
Headlight Software, Inc.

Description:
Change Settings that need Admun Privileges

Version:
1.0.6.5

MD5:
6efb4d61a218710cb53058c7e5067f3f

SHA-1:
d6cd29cbe5bf75a766705a2e840690c3c3307ec8

SHA-256:
485184a3c18ca562f4f65dcda60d9a6d8d6c783bf1e339ed0226a2f4702c6dfc

Scanner detections:
2 / 68

Status:
Potentially unwanted

Analysis date:
4/19/2024 7:32:13 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Kryptik.FPMF trojan
6.3.12010.0

Reason Heuristics
Adware.Bundler (M)
17.3.16.13

File size:
527 KB (539,648 bytes)

Copyright:
Copyright © Headlight Software, Inc. All rights reserved.

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\ic-0.47e8f502f6c4e4.exe

File PE Metadata
Compilation timestamp:
3/16/2017 10:07:27 PM

OS version:
3.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x1330

Entry point:
55, 8B, EC, 83, EC, 0C, E8, 75, 05, 00, 00, A1, 14, F3, 47, 00, 50, FF, 15, 90, A3, 45, 00, 8B, 0D, 14, F3, 47, 00, 51, FF, 15, 94, A3, 45, 00, 8B, 15, 14, F3, 47, 00, 52, FF, 15, 00, A4, 45, 00, FF, 15, 9C, A3, 45, 00, 68, D8, E6, 47, 00, FF, 15, A0, A3, 45, 00, FF, 15, A4, A3, 45, 00, A1, 14, F3, 47, 00, 50, FF, 15, A8, A3, 45, 00, FF, 15, AC, A3, 45, 00, 8B, 0D, 14, F3, 47, 00, 51, FF, 15, B0, A3, 45, 00, 8B, 15, 14, F3, 47, 00, 52, FF, 15, B4, A3, 45, 00, A1, 14, F3, 47, 00, 50, FF, 15, B8, A3, 45, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
354.5 KB (363,008 bytes)

Remove ic-0.47e8f502f6c4e4.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.