home

treiberupdate.exe

Ingo Bordasch Software

The executable treiberupdate.exe has been detected as malware by 5 anti-virus scanners. This file is typically installed with the program Der Ahnenforscher 6 by Markt und Technik GmbH.
Publisher:
Ingo Bordasch Software  (signed and verified)

MD5:
7dd28a5279eef0652f9b10eb5635c602

SHA-1:
fa77ea30006fc8d20b8e57326a525aece1a57239

Scanner detections:
5 / 68

Status:
Malware

Analysis date:
4/25/2024 8:38:21 AM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
UnclassifiedMalware
8601

Reason Heuristics
Threat.Win.Reputation.IMP
14.12.16.10

Rising Antivirus
Suspicious
23.00.65.14515

Trend Micro House Call
PAK_Generic.001
7.2.137

Trend Micro
PAK_Generic.001
10.465.17

File size:
89.8 KB (91,952 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\ahnen-chronik 5.0\treiberupdate.exe

Digital Signature
Signed by:
Ingo Bordasch Software

Authority:
GlobalSign nv-sa

Valid from:
4/13/2007 11:25:42 AM

Valid to:
4/13/2008 11:25:42 AM

Subject:
E=info@ib-software.de, CN=Ingo Bordasch Software, O=Ingo Bordasch Software, C=DE

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
01000000000111EA432DC1

File PE Metadata
Compilation timestamp:
5/16/2007 4:54:42 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.50

CTPH (ssdeep):
1536:U+6jiznFYXlRQ1yxk/1LlSK6ADl/yHsnXKjGz1SA6PT5x0xurJF4HxqsG:U+6jijFYXlq1ck7SIl/jnXKjGz1SA6d5

Entry address:
0x34590

Entry point:
60, BE, 15, 30, 42, 00, 8D, BE, EB, DF, FD, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75...
 
[+]

Packer / compiler:
UPX 2.90LZMA]

Code size:
72 KB (73,728 bytes)

The file treiberupdate.exe has been discovered within the following program.

Der Ahnenforscher 6  by Markt und Technik GmbH
www.mut.de
About 3% of users remove it
 
Powered by Should I Remove It?

Remove treiberupdate.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.