home

WomUpdate.exe

Wopti 自動更新精靈

魯錦

Publisher:
魯錦

Product:
Wopti 自動更新精靈

Version:
1.2.6.322

MD5:
06070cea93f59d4cd420ed1bf1238d03

SHA-1:
e7f51b3b1d76cfa7965e93ae7a0848a403669e6f

SHA-256:
ba21023b850f336c78de587c59da5d7d4b2cad0eb5b4136607b55f0fb6a68925

Scanner detections:
5 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/19/2024 12:52:50 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
PSW.Banker4
2015.0.3587

Comodo Security
UnclassifiedMalware
14553

IKARUS anti.virus
Trojan-PWS.Banker4
t3scan.1.1.122.0

K7 AntiVirus
Trojan
13.155.7995

Trend Micro House Call
TROJ_GEN.R34H1K3
7.2.22

File size:
733 KB (750,592 bytes)

Product version:
1.2

Copyright:
Copyright (C) 2000-2006 魯錦

Trademarks:
Wopti

Original file name:
WomUpdate.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\wopti\womupdate.exe

File PE Metadata
Compilation timestamp:
6/20/1992 6:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:OlVIqKcbm2CItxkeAwBIRLYcCwYT0RNh3NVMbTv7oAmsp03:OlVIFchtxkeAwB80EFb7Ov7v

Entry address:
0x92BF0

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, A0, 29, 49, 00, E8, 07, 42, F7, FF, 68, 6C, 2C, 49, 00, 6A, FF, 6A, 00, E8, 6D, 44, F7, FF, 8B, D8, E8, 46, 45, F7, FF, 3D, B7, 00, 00, 00, 74, 41, A1, 00, 5A, 49, 00, 8B, 00, E8, 07, E5, FD, FF, A1, 00, 5A, 49, 00, 8B, 00, BA, 84, 2C, 49, 00, E8, DE, E0, FD, FF, 8B, 0D, 04, 5B, 49, 00, A1, 00, 5A, 49, 00, 8B, 00, 8B, 15, 3C, 0D, 49, 00, E8, F6, E4, FD, FF, A1, 00, 5A, 49, 00, 8B, 00, E8, 6A, E5, FD, FF, 53, E8, F8, 45, F7, FF, 5B, E8, 4A, 1F, F7, FF, 00, 00, 57, 69, 73, 65...
 
[+]

Entropy:
6.6535

Developed / compiled with:
Microsoft Visual C++

Code size:
583.5 KB (597,504 bytes)

Scan WomUpdate.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.