home

tc2_channel107.exe

(주)워핑

The application tc2_channel107.exe by (주)워핑 has been detected as a potentially unwanted program by 31 anti-malware scanners.
Publisher:
(주)워핑  (signed and verified)

MD5:
1412eb69bb03615cd4bd14f691635e62

SHA-1:
9eb60f1a8669491a8b74e0e5ca64c84ccc694b9e

SHA-256:
858bb78ffc6636bfd25ae77da101fd400d84478463329cee463649eb51eb25fa

Scanner detections:
31 / 68

Status:
Potentially unwanted

Analysis date:
4/25/2024 12:10:36 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Dropped:Trojan.Generic.KDV.680537
1017

Agnitum Outpost
Trojan.DR.Agent
7.1.1

Avira AntiVirus
TR/Drop.Agent.gwkfm
7.11.123.32

avast!
Win32:Adware-ACL [Adw]
2014.9-140424

AVG
Dropper.Agent
2015.0.3495

Bitdefender
Dropped:Trojan.Generic.KDV.680537
1.0.20.570

Bkav FE
W32.OnGameZ9ALJ.Trojan
1.3.0.4613

Clam AntiVirus
Win.Trojan.Agent-377530
0.98/18155

Comodo Security
TrojWare.Win32.Trojan.Agent.Gen
17546

Emsisoft Anti-Malware
Dropped:Trojan.Generic.KDV.680537
8.14.04.24.07

ESET NOD32
Win32/Adware.Kraddare.FJ (variant)
8.9245

Fortinet FortiGate
Adware/Kraddare.FJ
4/24/2014

G Data
Dropped:Trojan.Generic.KDV.680537
14.4.22

IKARUS anti.virus
Win32.SuspectCrc
t3scan.2.2.29

K7 AntiVirus
Trojan
13.174.10720

Kaspersky
Trojan-Dropper.Win32.Agent
14.0.0.3968

Malwarebytes
Adware.Kraddare
v2014.04.24.07

McAfee
Artemis!1412EB69BB03
5600.7151

MicroWorld eScan
Dropped:Trojan.Generic.KDV.680537
15.0.0.342

NANO AntiVirus
Trojan.Win32.Agent.bddpyr
0.28.0.57029

Norman
Graftor.AZ
11.20140424

nProtect
Trojan-Dropper/W32.Agent.581704
14.01.01.01

Panda Antivirus
Generic Malware
14.04.24.07

Rising Antivirus
PE:Trojan.Win32.Generic.12DFEFF6!316665846
23.00.65.14422

Sophos
Generic PUA JO
4.96

SUPERAntiSpyware
Trojan.Agent/Gen-Dropper
10646

Trend Micro House Call
ADW_KRADDARE
7.2.114

Trend Micro
ADW_KRADDARE
10.465.24

Vba32 AntiVirus
TrojanDropper.Agent
3.12.24.3

VIPRE Antivirus
Trojan.Win32.Generic
25042

ViRobot
Dropper.Agent.Gen.B
2011.4.7.4223

File size:
568.1 KB (581,704 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\windows\syswow64\tc2_channel107.exe

Digital Signature
Signed by:
(주)워핑

Authority:
Thawte, Inc.

Valid from:
10/5/2011 9:00:00 AM

Valid to:
10/5/2012 8:59:59 AM

Subject:
CN=(주)워핑, O=(주)워핑, L=Gwanak-gu, S=Seoul, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
297FB0DB26EF90EAC6CCBC7DC4DAE565

File PE Metadata
Compilation timestamp:
6/14/2012 9:32:28 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:4doQ6lMYi17hrj8Hb9IVP9gZAErSLbm0IXxoJaou0o7MauiTIP:K3hYA8Hb9oVg+EQa3o/WuiTIP

Entry address:
0xD243

Entry point:
E8, 6E, 24, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 5D, E9, 4D, 03, 00, 00, 3B, 0D, 4C, 11, 42, 00, 75, 02, F3, C3, E9, E5, 24, 00, 00, 8B, FF, 55, 8B, EC, 56, 8B, 75, 14, 57, 33, FF, 3B, F7, 75, 04, 33, C0, EB, 65, 39, 7D, 08, 75, 1B, E8, 82, 29, 00, 00, 6A, 16, 5E, 89, 30, 57, 57, 57, 57, 57, E8, 33, 0C, 00, 00, 83, C4, 14, 8B, C6, EB, 45, 39, 7D, 10, 74, 16, 39, 75, 0C, 72, 11, 56, FF, 75, 10, FF, 75, 08, E8, AF, 25, 00, 00, 83, C4, 0C, EB, C1, FF, 75, 0C, 57, FF, 75, 08, E8, CE, 0E, 00, 00, 83...
 
[+]

Entropy:
7.7851  (probably packed)

Code size:
96.5 KB (98,816 bytes)

Remove tc2_channel107.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.