» RegPatientTypeCol.exe
Overview
Analysis
File Details

RegPatientTypeCol.exe

patientBillwise

BTS

The executable RegPatientTypeCol.exe has been detected as malware by 4 anti-virus scanners.

File name:

Publisher:

BTS

Product:

patientBillwise

Version:

1.00

MD5:

2b22ddb394a72cdbbb69105005cabf47

SHA-1:

18c5db09e05f0dc22a61dea2f42a883f313a4acf

SHA-256:

e6c8beb4619a9230c0d1394fd435f962227b3f921be16e5cf3e9b84ee8424632

Scanner detections:

4 / 68

Status:

Malware

Analysis date:

4/26/2024 1:50:16 AM UTC (today)

Scan engine

Detection

Engine version

Avira AntiVirus

TR/Dropper.Gen

7.11.30.172

avast!

Win32:WrongInf-A [Susp]

2014.9-150401

Baidu Antivirus

Virus.Win32.Virut.$q

4.0.3.1541

NANO AntiVirus

Virus.Win32.Virut-Gen.bwpxnc

0.30.8.659

File size:

420 KB (430,080 bytes)

Product version:

1.00

Original file name:

RegPatientTypeCol.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\bts\hms\regpatienttypecol.exe

File PE Metadata

Compilation timestamp:

5/25/2055 11:40:40 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

768:Nm8W/b22q9FIyo/vPXWLhmvAzZQFBEaC:88W/C/9GyGvP+mvygBEr

Entry address:

0x1494

Entry point:

68, C0, 1A, 40, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 9A, 4D, F0, 14, E9, 0A, DD, 4E, 82, C4, D2, E3, D5, D2, F7, D0, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 41, 00, 06, 50, 83, 02, 70, 61, 74, 69, 65, 6E, 74, 62, 69, 6C, 6C, 77, 69, 73, 65, 00, 00, 00, 00, 00, FF, CC, 31, 00, 0D, 32, D1, D9, 82, 52, E0, 37, 4A, A8, 6D, 68, EE, 5B, 05, A8, 1F, D3, DA, 8A, 15, 67, 51, B3, 41, A5, BE, 38, 6A, FD, 6B, 63, 36, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00... 
[+]

Entropy:

0.7191

Developed / compiled with:

Microsoft Visual Basic v5.0

Code size:

32 KB (32,768 bytes)

Remove RegPatientTypeCol.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.