home

octfe7c.tmp.exe

Win Services

The application octfe7c.tmp.exe by Win Services has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Win Services  (signed and verified)

MD5:
a7baf761a96d73157c3431c1dffc427e

SHA-1:
e49847bf916733bc40020a8be32a80ac01fed3c5

SHA-256:
8b6e02572cfa7eb2dd39f3d57126576ede17ddb78238ead37ff6162b0de7622a

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
5/18/2024 1:50:07 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.SweetLabs.Updater (L)
17.3.11.5

File size:
61.8 MB (64,809,432 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\octfe7c.tmp.exe

Digital Signature
Signed by:
Win Services

Authority:
COMODO CA Limited

Valid from:
10/19/2015 9:00:00 PM

Valid to:
10/19/2018 8:59:59 PM

Subject:
CN=Win Services, O=Win Services, STREET="510 Market St #301", L=San Diego, S=California, PostalCode=92101, C=US

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00882FAAFF80E36523D43662130839898B

File PE Metadata
Compilation timestamp:
2/24/2012 4:20:04 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

Entry address:
0x38AF

Entry point:
92, 40, 00, 83, C4, 0C, 8D, 85, 68, FF, FF, FF, 50, 6A, 00, E8, B9, 1A, 00, 00, 89, 7D, F0, 33, C0, 3B, F0, 74, 3F, 39, 45, 10, 75, 20, 50, 8D, 45, E8, 50, 56, FF, 75, F4, FF, 75, 0C, FF, 15, 54, 91, 40, 00, 85, C0, 74, 36, 39, 75, E8, 75, 31, 01, 75, FC, EB, 0E, A1, 80, 41, 43, 00, 01, 75, FC, 29, 75, F8, 89, 45, F4, 83, 7D, EC, 01, 0F, 85, 39, FF, FF, FF, EB, 37, 39, 45, 14, 0F, 8F, 02, FF, FF, FF, EB, 2C, 6A, FC, E9, 99, FE, FF, FF, 6A, FE, E9, 92, FE, FF, FF, 3B, DF, 74, 62, 39, 75, 14, 7D, 03, 8B, 75...
 
[+]

Code size:
29 KB (29,696 bytes)

Remove octfe7c.tmp.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.