home

np7.exe

LLC ITC

The application np7.exe by LLC ITC has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
LLC ITC  (signed and verified)

MD5:
e021f7d1685ce2cef314a61ca02b7190

SHA-1:
3c7436615fbca95f060a506df9e6284f413ad20d

SHA-256:
f3d0501d1eb0dd6c1b257c8978540c94ce4d75580479cfe2b8b4ec4f0489f939

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
5/28/2024 1:37:14 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.3.1.21

File size:
437.9 KB (448,360 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\np7.exe

Digital Signature
Signed by:
LLC ITC

Authority:
COMODO CA Limited

Valid from:
6/26/2014 3:00:00 AM

Valid to:
6/27/2015 2:59:59 AM

Subject:
CN=LLC ITC, O=LLC ITC, STREET=Vvedenskogo 11/3, L=Moscow, S=Moscow oblast, PostalCode=117342, C=RU

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00F4DBD55156EE0DAFED4BAB130328504E

File PE Metadata
Compilation timestamp:
7/12/2014 9:02:32 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.11

Entry address:
0x69FC

Entry point:
87, DD, 85, F2, 31, E2, 23, 44, 24, 08, C1, C9, 0E, 05, E5, 58, 72, FA, 3B, 44, 24, 10, 45, 40, C1, C3, 05, C1, DD, 0C, 23, 74, 24, EC, 90, C1, C5, 0C, 13, 54, 24, 14, FD, 8B, 4C, 24, 08, 46, C1, E5, 12, FC, C1, D5, 1C, 11, FA, F7, D7, F5, C1, CE, 05, 40, 03, 6C, 24, 08, 81, E5, E1, 1E, 48, 09, F7, D0, 81, C7, 78, F0, 5D, 01, 8B, 7C, 24, F8, F5, 81, F1, 62, 0B, BC, 0E, 87, F7, F7, D3, 81, F1, 03, C1, EB, D7, 19, C2, FD, F7, 04, 24, 44, 82, F8, 60, 4A, C1, D1, 10, C1, FF, 11, C1, C9, 19, 4B, F7, D3, C1, D2...
 
[+]

Code size:
367 KB (375,808 bytes)

Remove np7.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.