» internet.download.manager.v6.xx-patch.by.sound clg.exe
Overview
Analysis
File Details

internet.download.manager.v6.xx-patch.by.sound clg.exe

The application internet.download.manager.v6.xx-patch.by.sound clg.exe has been detected as a potentially unwanted program by 27 anti-malware scanners.

File name:

MD5:

aff7f1c7f0fe93836a2ef66e3de7a089

SHA-1:

6bb76cfa9424f59e8534d33b2c9dfb7fafd7e388

SHA-256:

7ed3ca57b81202453221e869c33ec913c84dcca49eb3df6bc793395f406e5c33

Scanner detections:

27 / 68

Status:

Potentially unwanted

Analysis date:

4/25/2024 2:59:32 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Kazy.579397

5650986

Agnitum Outpost

Riskware.HackTool

7.1.1

AhnLab V3 Security

Packed/Win32.Morphine

2015.04.19

avast!

Win32:Patcher-AK [PUP]

150319-1

AVG

Potentially harmful program Crack.MG

2014.0.4311

Baidu Antivirus

HackTool.Win32.Patcher.H1210s

4.0.3.15421

Bitdefender

Gen:Variant.Kazy.579397

1.0.20.555

Comodo Security

TrojWare.Win32.Agent.WFN

21814

Emsisoft Anti-Malware

Gen:Variant.Kazy.579397

9.0.0.4799

ESET NOD32

Win32/HackTool.Patcher.AD potentially unsafe application

7.0.302.0

Fortinet FortiGate

Riskware/GamePatcher

4/21/2015

F-Prot

W32/Agent.KFY

4.6.5.141

F-Secure

Gen:Variant.Kazy.579397

5.13.68

G Data

Gen:Variant.Kazy.579397

15.4.25

K7 AntiVirus

Trojan

13.202.15640

Malwarebytes

PUP.Riskware.Patcher

v2015.04.21.05

McAfee

Program.Artemis!AFF7F1C7F0FE

16.8.708.2

MicroWorld eScan

Gen:Variant.Kazy.579397

16.0.0.333

Norman

Gen:Trojan.Heur.FU.UuW@aK78rqn

03.12.2014 13:20:04

Reason Heuristics

Threat.Win.Reputation.IMP

15.4.21.5

Sophos

Troj/Agent-WFN

4.98

Trend Micro House Call

TROJ_GEN.R047C0RC315

7.2.111

Trend Micro

TROJ_GEN.R047C0RC315

10.465.21

VIPRE Antivirus

Threat.4776241

39354

ViRobot

Trojan.Win32.Agent.754688.B[h]

2014.3.20.0

Zillya! Antivirus

Tool.Patcher.Win32.11756

2.0.0.2143

File size:

748 KB (765,952 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\internet.download.manager.v6.xx-patch.by.sound clg.exe

File PE Metadata

Compilation timestamp:

5/2/2012 8:50:41 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

12288:AU3pOciGW5dbVowOMdSiCl5CKC9RnQhtBOfOI4NjpUfUuOtljuuiH2xJYPZNEsQ:zscIAMdC5sKtBOfMNlAoEycbEsQ

Entry address:

0x102B

Entry point:

E8, 07, 00, 00, 00, 6A, 00, E8, 05, 01, 00, 00, 55, 8B, EC, 81, C4, F4, FB, FF, FF, 56, 57, 53, 6A, 00, E8, 04, 01, 00, 00, A3, 30, 30, 40, 00, C7, 45, F8, 00, 00, 00, 00, 6A, 0A, 68, 00, 30, 40, 00, 6A, 00, E8, DE, 00, 00, 00, 0B, C0, 74, 21, 89, 45, FC, FF, 75, FC, 6A, 00, E8, FD, 00, 00, 00, 89, 45, F4, FF, 75, FC, 6A, 00, E8, E4, 00, 00, 00, 0B, C0, 74, 03, 89, 45, F8, 83, 7D, F8, 00, 74, 32, 6A, 04, 68, 00, 10, 00, 00, FF, 75, F4, 6A, 00, E8, D8, 00, 00, 00, 8B, F8, FF, 75, F4, FF, 75, F8, 57, E8, BE... 
[+]

Code size:

512 Bytes (512 bytes)

Remove internet.download.manager.v6.xx-patch.by.sound clg.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.