home

vpnium.exe

VPNium

It runs as a scheduled task under the Windows Task Scheduler named VPNium triggered to execute each time a user logs in.
Publisher:
VPNium

Product:
VPNium

Version:
1.0.0.0

MD5:
88cb249b323b5fcc9263198f3d08e3cc

SHA-1:
f7958fedb0a5b874c9b571cc268c760d9fb31410

SHA-256:
dc07ca0ca98fb84d321749da57ea856a2f7e4e25a147389f56d38d0234833793

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/16/2024 10:29:18 PM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
TROJ_GEN.F47V0728
7.2.351

File size:
370.5 KB (379,392 bytes)

Product version:
1.0.0.0

Copyright:
Copyright ©VPNium 2012

Original file name:
vpnium.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\vpnium\vpnium.exe

File PE Metadata
Compilation timestamp:
3/19/2013 9:08:53 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:X6UpVK835KwQ1QtuPh+hWdofm5PlhbNfhCfSUtizHgW1jCCIo:VpVL9Q19JpdYm5zNfcfptizHgWQC1

Entry address:
0x5A18E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
352.5 KB (360,960 bytes)

Scheduled Task
Task name:
VPNium

Trigger:
Logon (Runs on logon)


The executing file has been seen to make the following network communication in live environments.

TCP (HTTP SSL):
Connects to ip-static-94-242-206-233.as5577.net  (94.242.206.233:443)

Scan vpnium.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.