home

tdmoip-7.exe

VIRUSBLOKADA LTD.

The executable tdmoip-7.exe has been detected as malware by 1 anti-virus scanner.
Publisher:
VIRUSBLOKADA LTD.  (signed and verified)

MD5:
fbb9ae89848b951286b5a885f33cc879

SHA-1:
3d1b053a42bf519d3a868bd5e23a9e1c5f31f1ed

SHA-256:
5b94bec65f70319d81f39bc560dc9cfdf4c367f2eebb9e3261236f59c8757253

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
4/25/2024 4:10:05 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Trojan.Kryptik
16.11.22.9

File size:
556.4 KB (569,728 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\ProgramData\tdmoip-4\tdmoip-7.exe

Digital Signature
Signed by:
VIRUSBLOKADA LTD.

Authority:
VeriSign, Inc.

Valid from:
1/29/2010 1:00:00 AM

Valid to:
1/31/2012 12:59:59 AM

Subject:
CN=VIRUSBLOKADA LTD., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=VIRUSBLOKADA LTD., L=Minsk, S=none, C=BY

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2BEF4F72149367BCC7775D0000909C1D

File PE Metadata
Compilation timestamp:
8/30/2010 5:37:06 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
12288:h/COX9ndp/V60/yuB6YoZuqYBAxmcjETY1xwMRWw8PV:h6OtXV60/fqIAxm0eY16WWzPV

Entry address:
0x1000

Entry point:
FF, 15, 08, B0, 40, 00, A3, 71, 28, 41, 00, BB, 67, 2B, 00, 00, EB, 10, 68, 3A, FE, FF, FF, 6A, 00, FF, 15, 0C, B0, 40, 00, 40, 2B, D8, 0B, DB, 75, EC, 8B, EC, 81, EC, 30, 0A, 00, 00, 6A, 06, B8, AC, 22, 41, 00, 50, E8, AD, 18, 00, 00, 8B, 0D, 52, 28, 41, 00, 81, E1, FF, 0F, 00, 00, 89, 0D, AC, 20, 41, 00, B8, B8, 45, 41, 00, 50, FF, 15, 00, B0, 40, 00, 89, 85, BC, F9, FF, FF, 0F, B6, 15, 5C, 20, 41, 00, 89, 15, F7, 23, 41, 00, 81, EA, FE, 63, 00, 00, 89, 15, 2A, 22, 41, 00, B9, 19, 00, 00, 00, 89, 8D, F4...
 
[+]

Remove tdmoip-7.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.