» oeuewveria.exe
Overview
Analysis
File Details
Downloads (1)

oeuewveria.exe

Proxifier Stndard Edition

Initex Software

The application oeuewveria.exe, “Proxifier Standard Edition v2.9” has been detected as a potentially unwanted program by 31 anti-malware scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from evaporez.com.

File name:

oeuewveria.exe

Publisher:

Initex Software

Product:

Proxifier Stndard Edition

Description:

Proxifier Standard Edition v2.9

Version:

2, 90, 0, 1

MD5:

f0d484a79fbac1aad98fd8161e4e2dcc

SHA-1:

3e12076fe33219ea6a5dd6201f8d55e8d294be72

SHA-256:

91c29323b950deadd62283f6f45fe25967c97837aeaee2124eb5f69b2dcb6cf6

Scanner detections:

31 / 68

Status:

Potentially unwanted

Analysis date:

5/2/2024 7:24:46 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Graftor.256634

364

Agnitum Outpost

Trojan.Agent

7.1.1

AhnLab V3 Security

Malware/Win32.Generic

2015.11.26

Avira AntiVirus

DR/Delphi.A.9632

8.3.2.4

Arcabit

Trojan.Graftor.D3EA7A

1.0.0.624

avast!

Win32:Dropper-gen [Drp]

2014.9-160205

AVG

Inject3

2017.0.2842

Baidu Antivirus

Trojan.Win32.Injector

4.0.3.1625

Bitdefender

Gen:Variant.Graftor.256634

1.0.20.180

Bkav FE

W32.PiscarttoLTAG.Trojan

1.3.0.7383

Comodo Security

UnclassifiedMalware

23656

Dr.Web

Trojan.Inject2.8376

9.0.1.036

Emsisoft Anti-Malware

Gen:Variant.Graftor.256634

8.16.02.05.12

ESET NOD32

Win32/Injector.CMAR (variant)

10.12624

Fortinet FortiGate

W32/Agent.NETDRM!tr

2/5/2016

F-Secure

Gen:Variant.Graftor.256634

11.2016-05-02_6

G Data

Gen:Variant.Graftor.256634

16.2.25

IKARUS anti.virus

Trojan.Win32.Injector

t3scan.1.9.5.0

K7 AntiVirus

Trojan

13.212.17972

Kaspersky

Trojan.Win32.Agent.netdrm

14.0.0.707

McAfee

RDN/Suspicious.bfr

5600.6498

Microsoft Security Essentials

Trojan:Win32/Dynamer!ac

1.1.12300.0

MicroWorld eScan

Gen:Variant.Graftor.256634

17.0.0.108

NANO AntiVirus

Trojan.Win32.Agent.dyoyju

0.30.26.4751

Panda Antivirus

Trj/CI.A

16.02.05.12

Qihoo 360 Security

HEUR/QVM05.1.Malware.Gen

1.0.0.1077

Quick Heal

Trojan.Agen.r8

2.16.14.00

Sophos

Mal/Generic-S

4.98

Trend Micro

TROJ_GEN.R047C0DKJ15

10.465.05

VIPRE Antivirus

Trojan.Win32.Generic

45426

Zillya! Antivirus

Adware.Eorezo.Win32.17747

2.0.0.2527

File size:

833 KB (852,992 bytes)

Product version:

2, 90, 0, 1

Original file name:

Proxifier.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\temp\oeuewveria.exe

File PE Metadata

Compilation timestamp:

3/18/2015 3:40:26 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

12288:I7rZOtEIF003qWoVoyfCwksOC/8tQrrNPzN+Sei1niG6vheKRtowvq5HL4S1ulzg:MZXo1qW4oZ89JvNPjeMniG6vheQKH

Entry address:

0xA881C

Entry point:

55, 8B, EC, 83, C4, F0, B8, 0C, 86, 4A, 00, E8, F4, E1, F5, FF, A1, 88, 04, 4B, 00, 8B, 00, E8, 38, DB, FA, FF, 8B, 0D, FC, 05, 4B, 00, A1, 88, 04, 4B, 00, 8B, 00, 8B, 15, 6C, 7D, 4A, 00, E8, 38, DB, FA, FF, A1, 88, 04, 4B, 00, 8B, 00, E8, AC, DB, FA, FF, E8, 47, BB, F5, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

670.5 KB (686,592 bytes)

The file oeuewveria.exe has been seen being distributed by the following URL.

http://evaporez.com/tupd.exe

Remove oeuewveria.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.