home

mpps.exe

Mpps

Amt-Cartech Ltd

The executable mpps.exe has been detected as malware by 5 anti-virus scanners.
Publisher:
Amt-Cartech Ltd  (signed and verified)

Product:
Mpps®

Version:
16.0.1.8

MD5:
69df6d46fb3e7d4aff4de529105cce88

SHA-1:
f3fb22192d322f1bcf68baf5ba920ae04913ee7d

SHA-256:
a62d89da0cfa20f60a3483ee3828db656a6d18a6b1625e805e21f97fd9298665

Scanner detections:
5 / 68

Status:
Malware

Analysis date:
4/25/2024 3:40:10 AM UTC  (today)

Scan engine
Detection
Engine version

Baidu Antivirus
Trojan.Win32.DYAMAR
4.0.3.15102

Bkav FE
HW32.Packed
1.3.0.7062

ESET NOD32
Win32/RiskWare.DYAMAR (variant)
9.12086

Fortinet FortiGate
Riskware/DYAMAR
10/2/2015

IKARUS anti.virus
Trojan-Dropper.Delf
t3scan.1.9.5.0

File size:
2.6 MB (2,674,080 bytes)

Product version:
16.0.0.0

Copyright:
Amt-Cartech Ltd

Trademarks:
Mpps®

Original file name:
Mpps

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:
Amt-Cartech Ltd

Authority:
GlobalSign nv-sa

Valid from:
8/23/2011 7:53:00 AM

Valid to:
8/23/2013 6:38:58 AM

Subject:
E=phil@amtcartech.com, CN=Amt-Cartech Ltd, O=Amt-Cartech Ltd, L=Silverstone, S=Northants, C=GB

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11217E7E6FC4518BFF4382B011094E0F0695

File PE Metadata
Compilation timestamp:
7/5/2012 5:26:58 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.0

CTPH (ssdeep):
49152:Bt6XW74S/w3kpxDFtLzKC82yLSe3d6dcnH:Btbk3OrtLzck9cnH

Entry address:
0x3CF710

Entry point:
55, 8B, EC, 8B, 45, 10, 50, 8B, 45, 0C, 50, 8B, 45, 08, 50, E8, 2F, CB, FE, FF, 8B, E5, 5D, C3, 8B, E5, 5D, C3, CC, CC, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
4.3 MB (4,472,832 bytes)

Remove mpps.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.