» patch [ powerarchiver 2006 9.61 ].exe
Overview
Analysis
File Details

patch [ powerarchiver 2006 9.61 ].exe

The executable patch [ powerarchiver 2006 9.61 ].exe has been detected as malware by 17 anti-virus scanners.

File name:

MD5:

20bf1969da0de4a9195a66938ee5cd15

SHA-1:

03cbf9261481a865453029976c15f9991f30078e

SHA-256:

74ce84af44297665eb869d5577b4cf52a20084a7aa27a002a589306cc9c94eac

Scanner detections:

17 / 68

Status:

Malware

Analysis date:

4/19/2024 11:15:22 AM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

HackTool.Patcher

7.1.1

AhnLab V3 Security

Win-Trojan/Keygen.64512

2013.08.31

Avira AntiVirus

TR/Horse.RAP

7.11.99.48

Comodo Security

ApplicUnsaf.Win32.HackTool.Keygen.~AAA

16850

ESET NOD32

Win32/HackTool.Patcher.BD (variant)

9.8744

IKARUS anti.virus

Virus.Win32.Alman

t3scan.2.0.127

K7 AntiVirus

Trojan

13.170.9438

McAfee

Artemis!20BF1969DA0D

5600.6658

Norman

keygen.X

11.20150830

nProtect

Trojan/W32.Small.26112.AA

13.08.30.03

Panda Antivirus

Suspicious file

15.08.30.12

Quick Heal

HackTool.Patcher.A

8.15.12.00

Sophos

Generic Patcher

4.91

Total Defense

Win32/Cracker.AE

37.0.10498

Trend Micro House Call

PAK_Generic.001

7.2.242

Trend Micro

PAK_Generic.001

10.465.30

ViRobot

Trojan.Win32.Keygen.140288

2011.4.7.4223

File size:

25.5 KB (26,112 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\programs\programs\softwares\utilities\old utilities\powerarchiver\powerarchiver.2006.9.61\patch\patch [ powerarchiver 2006 9.61 ].exe

File PE Metadata

Compilation timestamp:

1/19/2006 11:08:03 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

7.0

CTPH (ssdeep):

384:bwG+EtZ0c79Qnx8cA/boCIXF+zlfWKc7FAMofN04arGDlUUaSV:1jl2x8TTRI1+pfWKs1a+SY2

Entry address:

0x20EA

Entry point:

8D, 9B, 00, 00, 00, 00, E8, 13, 0B, 00, 00, E8, 4E, 0A, 00, 00, 8B, F0, 6A, 00, 68, 23, 43, 40, 00, 56, E8, D7, 0C, 00, 00, A2, 63, 49, 40, 00, 6A, 00, 68, 2A, 43, 40, 00, 56, E8, C5, 0C, 00, 00, A2, 64, 49, 40, 00, 6A, 00, 68, 31, 43, 40, 00, 56, E8, B3, 0C, 00, 00, A2, 65, 49, 40, 00, 68, A5, 44, 40, 00, 68, 3B, 43, 40, 00, 56, E8, 9E, 0C, 00, 00, 3C, 01, 75, 19, BE, 66, 49, 40, 00, 68, 00, 02, 00, 00, 56, 68, A5, 44, 40, 00, E8, DB, 09, 00, 00, 8B, C6, EB, 02, 33, C0, 50, E8, 09, 0D, 00, 00, 6A, 00, E8... 
[+]

Entropy:

5.6870

Code size:

8 KB (8,192 bytes)

Remove patch [ powerarchiver 2006 9.61 ].exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.