patch.exe

The application patch.exe has been detected as a potentially unwanted program by 93 anti-malware scanners.
Remove patch.exe - Powered by Reason Core Security
MD5:
500b36a596828865216f613a0da4dc74

SHA-1:
97e746508c8292ca5d0c7f2509f8327c976e71d6

SHA-256:
4d993b1fb487bacc578fa7f199816f5c2858eb7f3a9e0ee7c89b588d29a591f8

Scanner detections:
68 / 68

Status:
Potentially unwanted

Analysis date:
12/5/2016 7:32:59 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
HackTool.Patcher
7.1.1

avast!
Win32:Malware-gen
2014.9-140610

AVG
Generic26
2015.0.3447

Bitdefender
Gen:Variant.Kazy.141515
1.0.20.805

Commtouch SDK
W32/Trojan.THBV-2108
5.4.1.7

Comodo Security
TrojWare.Win32.Trojan.XPACK.Gen
16380

Emsisoft Anti-Malware
Gen:Variant.Kazy.141515
8.14.06.10.06

eSafe
Win32.TRCrypt.XPACK
7.0.17.0

ESET NOD32
Win32/HackTool.Patcher (variant)
8.8416

Fortinet FortiGate
W32/KeyGen.U
6/10/2014

F-Secure
Gen:Variant.Kazy.141515
11.2014-10-06_3

G Data
Gen:Variant.Kazy.141515
14.6.22

IKARUS anti.virus
not-a-virus:Hacktool
t3scan.2.0.3.0

K7 AntiVirus
Riskware
13.170.8817

K7 Gateway Antivirus
Riskware
13.12.7.0.12

Kingsoft AntiVirus
Win32.Troj.Generic.(kcloud)
331020.49267

McAfee
Artemis!500B36A59682
5600.7103

McAfee Web Gateway
Heuristic.LooksLike.Win32.Suspicious.J!87
7.7103

Microsoft Security Essentials
HackTool:Win32/Patcher
1.163.1557.0

MicroWorld eScan
Gen:Variant.Kazy.141515
15.0.0.483

Norman
Troj_Generic.BZSSG
11.20140610

Panda Antivirus
Trj/Genetic.gen
14.06.10.06

Quick Heal
(Suspicious) - DNAScan
6.14.12.00

Sophos
Mal/KeyGen-U
4.89

The Hacker
Posible_Worm32
6.8.0.6.161

Trend Micro House Call
TROJ_GEN.USBH01ACN
7.2.161

Trend Micro
TROJ_GEN.USBH01ACN
10.465.10

VIPRE Antivirus
Trojan.Win32.Generic
18450

Remove patch.exe - Powered by Reason Core Security
File size:
25 KB (25,600 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\remo repair rar\patch.exe

File PE Metadata
Compilation timestamp:
10/19/2011 2:34:25 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
384:cOZJy3fuShyVNASJ2BCgV5k+cUxIHrFUXGpUF0stVcJK9lGOv5sU:5YuSg3o3VO+cUxB7Vc2lxq

Entry address:
0x26960

Entry point:
60, BE, 00, 20, 42, 00, 8D, BE, 00, F0, FD, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89...
 
[+]

Entropy:
7.2659

Packer / compiler:
UPX 2.90LZMA]

Code size:
20 KB (20,480 bytes)

Remove patch.exe - Powered by Reason Core Security