popup.exe

The application popup.exe has been detected as a potentially unwanted program by 33 anti-malware scanners.
Remove popup.exe - Powered by Reason Core Security
MD5:
c377dca3a5de3eb588f1e05fa70a7479

SHA-1:
d77ed46d3531f1af3018d1c3d14d3e0db05c3399

SHA-256:
89ccabf9c98e266e21dcc8c7b30cb06efea5eb12f4bdbe63aedfb00030f065b1

Scanner detections:
33 / 68

Status:
Potentially unwanted

Analysis date:
12/2/2016 9:31:15 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.KD.211386
969

Avira AntiVirus
Joke/BadJoke.Agent.sf
7.11.152.248

Antiy Labs AVL
HackTool[Hoax]/Win32.Agent
0.1.0.1

avast!
Win32:Malware-gen
2014.9-140610

Baidu Antivirus
Trojan.Win32.BadJoke
4.0.3.14610

Bitdefender
Trojan.Generic.KD.211386
1.0.20.805

Bkav FE
W32.Clode99.Trojan
1.3.0.4959

CMC Antivirus
Hoax.Win32.BadJoke.Agent!O
1.1.0.977

Commtouch SDK
W32/Joke.DAVA-5100
5.4.1.7

Comodo Security
UnclassifiedMalware
18434

Dr.Web
Joke.Forgery.2004
9.0.1.0161

Emsisoft Anti-Malware
Trojan.Generic.KD.211386
8.14.06.10.01

ESET NOD32
Win32/BadJoke.Agent.SF
8.9893

Fortinet FortiGate
Riskware/BadJoke_Agent
6/10/2014

F-Secure
Trojan.Generic.KD.211386
11.2014-10-06_3

G Data
Trojan.Generic.KD.211386
14.6.24

IKARUS anti.virus
Hoax.Win32.BadJoke.Agent
t3scan.1.6.1.0

K7 AntiVirus
Trojan
13.1712305

K7 Gateway Antivirus
Trojan
13.1712305

Kaspersky
Hoax.Win32.BadJoke.Agent
14.0.0.3732

Kingsoft AntiVirus
Win32.Troj.Hoax.(kcloud)
331020.49267

McAfee
Artemis!C377DCA3A5DE
5600.7103

McAfee Web Gateway
Artemis!C377DCA3A5DE
7.7103

Microsoft Security Essentials
Joke:Win32/FakeAlert
1.10600

MicroWorld eScan
Trojan.Generic.KD.211386
15.0.0.483

NANO AntiVirus
Riskware.Win32.Agent.kxthh
0.28.0.60100

Norman
Suspicious_Gen2.QTCRG
11.20140610

nProtect
Joke/W32.BadJoke.22864
14.06.04.01

Panda Antivirus
Generic Trojan
14.06.10.01

The Hacker
Trojan/BadJoke.Agent.sf
6.8.0.5.463

Trend Micro House Call
JOKE_BADJOKE
7.2.161

Trend Micro
JOKE_BADJOKE
10.465.10

VIPRE Antivirus
Hoax.Win32.BadJoke.Agent (not malicious)
29934

Remove popup.exe - Powered by Reason Core Security
File size:
22.3 KB (22,864 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
4/25/2011 12:56:15 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.20

CTPH (ssdeep):
192:F4Raxok0YjcZBXu7Wta5ERW49tuM4NhsLqvdOOkJoUgoTcLCN4q:FXoKcDXuita5oW+uxN9FONLf

Entry address:
0x12C0

Entry point:
55, 89, E5, 83, EC, 08, C7, 04, 24, 02, 00, 00, 00, FF, 15, F4, 40, 40, 00, E8, 78, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 8B, 0D, 10, 41, 40, 00, 89, E5, 5D, FF, E1, 8D, 74, 26, 00, 55, 8B, 0D, 00, 41, 40, 00, 89, E5, 5D, FF, E1, 90, 90, 90, 90, 55, 89, E5, 83, EC, 18, C7, 44, 24, 0C, 00, 00, 00, 00, C7, 44, 24, 08, 0C, 20, 40, 00, C7, 44, 24, 04, 18, 20, 40, 00, C7, 04, 24, 00, 00, 00, 00, E8, 06, 0B, 00, 00, 83, EC, 10, C7, 44, 24, 04, 00, 00, 00, 00, C7, 04, 24, 3C, 20, 40, 00, E8, 07, 0B, 00...
 
[+]

Packer / compiler:
MingWin32 GCC, 0x3.x

Code size:
4 KB (4,096 bytes)

Remove popup.exe - Powered by Reason Core Security