home

wasppacer.exe

Wasppacer

WaspAce Service

The application wasppacer.exe by WaspAce Service has been detected as a potentially unwanted program by 17 anti-malware scanners.
Publisher:
WaspAce  (signed by WaspAce Service)

Product:
Wasppacer

Description:
WaspAce

Version:
3.11.6.0

MD5:
3d1f4886d60924837cfd5368d6a18b85

SHA-1:
7610d64a21ef562b998f4298fd7219ef11eafcdd

Scanner detections:
17 / 68

Status:
Potentially unwanted

Analysis date:
4/18/2024 10:46:39 AM UTC  (today)

Scan engine
Detection
Engine version

AegisLab AV Signature
Troj.W32.Inject
2.1.4+

AhnLab V3 Security
Trojan/Win32.Banload
2014.11.07

Avira AntiVirus
TR/Strictor.53196.16
7.11.183.134

Baidu Antivirus
Hacktool.Win32.Wasppace
4.0.3.141129

Dr.Web
Tool.Wasppacer.2
9.0.1.0333

ESET NOD32
Win32/Wasppacer (variant)
8.10682

Fortinet FortiGate
Riskware/Wasppacer
11/29/2014

IKARUS anti.virus
PUA.Wasppacer
t3scan.1.8.3.0

K7 AntiVirus
Trojan
13.185.13930

Kaspersky
not-a-virus:NetTool.Win32.Wasppace
14.0.0.2872

McAfee
Artemis!3D1F4886D609
5600.6931

NANO AntiVirus
Riskware.Win32.Wasppacer.dghder
0.28.6.62995

Qihoo 360 Security
Win32/Trojan.ba3
1.0.0.1015

Quick Heal
NetTool.Wasppace.g3 (Not a Virus)
11.14.14.00

Sophos
Generic PUA HG
4.98

Trend Micro House Call
TROJ_GEN.R0CBC0EGL14
7.2.333

Zillya! Antivirus
Tool.Wasppace.Win32.3
2.0.0.1976

File size:
1 MB (1,058,360 bytes)

Product version:
1.0.0.0

Copyright:
WaspAce

Trademarks:
WaspAce

Original file name:
Wasppacer

File type:
Executable application (Win32 EXE)

Common path:
C:\Documents and Settings\{user}\Application data\microsoft\wasppacer.exe

Digital Signature
Signed by:
WaspAce Service

Authority:
WaspAce Service

Valid from:
4/8/2013 2:16:42 AM

Valid to:
1/1/2040 1:59:59 AM

Subject:
CN=WaspAce Service

Issuer:
CN=WaspAce Service

Serial number:
32FD6B4F8A1DF6AC491E72D01463EE79

File PE Metadata
Compilation timestamp:
6/19/2014 12:21:33 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:L+YBkx4OSn6EElaWwX8F8DHkDMnK2e6GxrnU2iQQfep:L+srnklaWw8F842oJiu

Entry address:
0x37A7A0

Entry point:
60, BE, 00, 30, 69, 00, 8D, BE, 00, E0, D6, FF, C7, 87, 18, 9C, 2D, 00, FE, 51, 16, 35, 57, 83, CD, FF, EB, 0E, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46...
 
[+]

Entropy:
7.7427

Packer / compiler:
UPX v0.89.6 - v1.02 / v1.05 -v1.22 (Delphi) stub

Code size:
928 KB (950,272 bytes)

Remove wasppacer.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.