home

mpps.exe

Mpps

Amt-Cartech Ltd

The executable mpps.exe has been detected as malware by 10 anti-virus scanners.
Publisher:
Amt-Cartech Ltd  (signed and verified)

Product:
Mpps®

Version:
16.0.1.8

MD5:
e655c42bf952f886a04b266f4da5b2f5

SHA-1:
7e7a73095c2bbc93691a5cf90d031dc0d3c2d9b8

SHA-256:
ec258d08497f1f0c26da9a425abdf7a345f427cdc6fcc3963a955b6cfbc601bd

Scanner detections:
10 / 68

Status:
Malware

Analysis date:
4/23/2024 10:25:04 AM UTC  (today)

Scan engine
Detection
Engine version

AegisLab AV Signature
Troj.Patched.Ren!c
2.1.4+

Avira AntiVirus
TR/Patched.Ren.Gen
8.3.3.2

Bkav FE
W32.HfsAutoA
1.3.0.7717

ESET NOD32
Win32/RiskWare.DYAMAR (variant)
10.13119

Fortinet FortiGate
Riskware/DYAMAR
3/17/2016

IKARUS anti.virus
Trojan-Dropper.Delf
t3scan.2.0.8.0

K7 AntiVirus
Riskware
13.214.18923

Qihoo 360 Security
HEUR/QVM19.1.Malware.Gen
1.0.0.1120

Rising Antivirus
PE:Malware.Generic/QRS!1.9E2D [F]
23.00.65.16315

Sophos
Generic PUA HO (PUA)
4.98

File size:
2.6 MB (2,674,080 bytes)

Product version:
16.0.0.0

Copyright:
Amt-Cartech Ltd

Trademarks:
Mpps®

Original file name:
Mpps

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\mpps.exe

Digital Signature
Signed by:
Amt-Cartech Ltd

Authority:
GlobalSign nv-sa

Valid from:
8/23/2011 1:53:00 PM

Valid to:
8/23/2013 12:38:58 PM

Subject:
E=phil@amtcartech.com, CN=Amt-Cartech Ltd, O=Amt-Cartech Ltd, L=Silverstone, S=Northants, C=GB

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11217E7E6FC4518BFF4382B011094E0F0695

File PE Metadata
Compilation timestamp:
7/5/2012 11:26:58 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.0

CTPH (ssdeep):
49152:tt6XW74S/w3kpxDFtLzKC82yLSe3d6dcnH:ttbk3OrtLzck9cnH

Entry address:
0x3CF710

Entry point:
55, 8B, EC, 8B, 45, 10, 50, 8B, 45, 0C, 50, 8B, 45, 08, 50, E8, 2F, CB, FE, FF, 8B, E5, 5D, C3, 8B, E5, 5D, C3, CC, CC, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
4.3 MB (4,472,832 bytes)

Remove mpps.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.