home

UnlockClient.exe

UnlockClient

UnlockClient.com

The executable UnlockClient.exe has been detected as malware by 10 anti-virus scanners.
Publisher:
www.UnlockClient.co  (signed by UnlockClient.com)

Product:
UnlockClient

Version:
0.0.0.28

MD5:
9a5c9f10ef53eda6324bba1bcbe165ee

SHA-1:
c995274bcdafc2056b31b76c2ae663f577c5949c

SHA-256:
23aa08c9b302743918e84c945f6a7b1803436b761b792ff0d38e47d1a8e52239

Scanner detections:
10 / 68

Status:
Malware

Analysis date:
4/19/2024 8:47:01 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.11404495
841

Bitdefender
Trojan.Generic.11404495
1.0.20.1450

Bkav FE
HW32.CDB
1.3.0.4959

Emsisoft Anti-Malware
Trojan.Generic.11404495
8.14.10.17.11

F-Secure
Trojan.Generic.11404495
11.2014-17-10_6

G Data
Trojan.Generic.11404495
14.10.24

IKARUS anti.virus
Trojan.SuspectCRC
t3scan.1.6.1.0

MicroWorld eScan
Trojan.Generic.11404495
15.0.0.870

Trend Micro House Call
TROJ_GEN.R0CBH05F314
7.2.290

VIPRE Antivirus
Trojan.Win32.Generic
30918

File size:
1.3 MB (1,383,600 bytes)

Product version:
0.0.0.28

Copyright:
www.UnlockClient.co

Original file name:
UnlockClient.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\unlockclient.exe

Digital Signature
Signed by:
UnlockClient.com

Authority:
UnlockClient.com

Valid from:
1/1/2012 12:30:00 AM

Valid to:
1/1/2050 12:30:00 AM

Subject:
CN=UnlockClient.com, E=support@UnlockClient.com, C=US

Issuer:
CN=UnlockClient.com, E=support@UnlockClient.com, C=US

Serial number:
828EEEBE1A5700BA4DF056CA16E51EDD

File PE Metadata
Compilation timestamp:
4/27/2014 4:55:24 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:x73RkuXoly6MmLyrOE65yCOgAqgrkWIg+kXXZ2osq9rMx5c5UtYX7akQFsd0zg:x7hedMm2rOstPIgHXpLXSKr6EOg

Entry address:
0x21767

Entry point:
55, 8B, EC, 83, C4, F0, B8, 00, 10, 40, 00, E8, 01, 00, 00, 00, 9A, 83, C4, 10, 8B, E5, 5D, E9, 7D, D1, 41, 00, CB, 28, 5A, 1A, 52, 0A, C5, C7, 67, 1F, 24, E6, 34, 15, 1A, 69, D7, BC, 1D, 25, 19, 9F, 19, 98, C2, 8F, 68, 92, 00, 2E, 20, 98, 59, B5, 0B, 77, AB, 71, 58, 1E, 2F, 2D, 51, DF, CB, A4, 2B, 57, 31, DD, 22, 2F, CB, 6E, B2, 1B, 32, E7, 15, 00, 36, 99, 95, 86, 8B, 0F, ED, A9, 41, CA, 48, 58, 62, 07, 98, 08, 43, 2C, 6A, 06, BE, 45, D0, 97, C2, 5A, 2B, 11, 11, 8B, 1D, 9B, 87, 7D, 46, A4, B6, C2, 7E, 23...
 
[+]

Entropy:
7.9328

Developed / compiled with:
Microsoft Visual C++

Code size:
1.1 MB (1,105,408 bytes)

Remove UnlockClient.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.