home

tmpad4a.tmp

The file tmpad4a.tmp has been detected as malware by 7 anti-virus scanners.
MD5:
f0f634866cf4075ea79492ff71c77e3b

SHA-1:
9fa32e9a5185c956eb8a45ca59d96b5ff4d67dc0

SHA-256:
cab922ec90350b44fc3a43d4794c8b66ff208b8deda4e73540c54aa54b9bda0a

Scanner detections:
7 / 68

Status:
Malware

Analysis date:
5/2/2024 3:23:56 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Agent.Enistery.95
7.11.106.64

avast!
Win32:Enistery [Susp]
2014.9-150417

G Data
Win32.Trojan.Agent.QHEEKY
15.7.22

herdProtect (fuzzy)
variant of tmp292c.tmp
2015.7.19.14

IKARUS anti.virus
Win32.Enistery
t3scan.2.0.127

McAfee
Artemis!3492E69DF483
5600.6792

Norman
Suspicious_Gen4.CPNFD
11.20150417

File size:
1.3 MB (1,340,758 bytes)

Common path:
C:\windows\temp\tmpad4a.tmp

File PE Metadata
Compilation timestamp:
5/22/2006 12:39:54 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
24576:uj0vMk2yk4h9+/2YCug+ThVtu/QInm0Jv5XDZGqC4RxsJYBas:uQkFyk49+/lCug+TDtu/QInm0JvJNhCc

Entry address:
0x996E7

Entry point:
55, 8B, EC, 53, 8B, 5D, 08, 56, 8B, 75, 0C, 57, 8B, 7D, 10, 85, F6, 75, 09, 83, 3D, D0, E7, 12, 10, 00, EB, 26, 83, FE, 01, 74, 05, 83, FE, 02, 75, 22, A1, FC, FE, 12, 10, 85, C0, 74, 09, 57, 56, 53, FF, D0, 85, C0, 74, 0C, 57, 56, 53, E8, E7, FE, FF, FF, 85, C0, 75, 04, 33, C0, EB, 4E, 57, 56, 53, E8, 31, 19, FF, FF, 83, FE, 01, 89, 45, 0C, 75, 0C, 85, C0, 75, 37, 57, 50, 53, E8, C3, FE, FF, FF, 85, F6, 74, 05, 83, FE, 03, 75, 26, 57, 56, 53, E8, B2, FE, FF, FF, 85, C0, 75, 03, 21, 45, 0C, 83, 7D, 0C, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
912.1 KB (933,970 bytes)

Remove tmpad4a.tmp - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.