home

java.exe

The application java.exe has been detected as a potentially unwanted program by 15 anti-malware scanners.
Description:
Installer

Version:
4.0.6.25

MD5:
3d1b29a86c66b68767026a944dca96bb

SHA-1:
8d42292e1f367536e3a0e40f8f8be763a44bffdc

SHA-256:
56f95922944802687c0659d95d4a9abe6f1adb98fb6da1ac7cba9b738373cc48

Scanner detections:
15 / 68

Status:
Potentially unwanted

Analysis date:
4/25/2024 3:55:03 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
PUA.DomaIQ
7.1.1

AhnLab V3 Security
Trojan/Win32.agent
14.07.23

Avira AntiVirus
APPL/DomaIQ.Gen
7.11.147.170

avast!
Win32:DomaIQ-AL [PUP]
2014.9-140723

AVG
Skodna.Generic
2015.0.3404

Baidu Antivirus
Adware.MSIL.DomaIQ
4.0.3.14723

Bkav FE
W32.Clod7b8.Trojan
1.3.0.4959

ESET NOD32
MSIL/DomaIQ (variant)
8.9760

Fortinet FortiGate
Adware/DomaIQ
7/23/2014

K7 AntiVirus
Trojan
13.177.11984

Malwarebytes
PUP.Optional.DomaIQ
v2014.07.23.03

McAfee
Artemis!3D1B29A86C66
5600.7060

NANO AntiVirus
Riskware.Win32.DomaIQ.csllvy
0.28.0.59608

Vba32 AntiVirus
Downware.DomaIQ
3.12.26.0

Zillya! Antivirus
Adware.DomaIQ.Win32.46
2.0.0.1779

File size:
6 KB (6,144 bytes)

Product version:
4.0.6.25

Original file name:
setup.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\fd408aac63dd468fbf89d48b3f3b830c\java.exe

File PE Metadata
Compilation timestamp:
10/10/2013 11:12:07 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
96:X7x4GFlhgpfbhTX/Rfo/EsL2fZ3NfLBOCCGWcaxhpwT:rxVfKbFX/RASR3mCPW/Hu

Entry address:
0x2F1E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
4.3370

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
4 KB (4,096 bytes)

Remove java.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.