» curriculo.cpl
Overview
Analysis
File Details

curriculo.cpl

The file curriculo.cpl has been detected as malware by 17 anti-virus scanners.

File name:

curriculo.cpl

MD5:

c945d6a64c2bc9b9d9b46b4572e99220

SHA-1:

ceb31652259ad773a2f02b029ad6098bea2aa2d2

SHA-256:

23cac50e1bf3affc9c35424a9cb13d4db1ad8facee1419f54661227653c4ff90

Scanner detections:

17 / 68

Status:

Malware

Analysis date:

5/5/2024 8:49:45 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Trojan.Heur.D.hm5@bqm8VTn

-40

Agnitum Outpost

Packed/MPress

7.1.1

Avira AntiVirus

TR/Crypt.XPACK.Gen

7.11.133.154

Bitdefender

Gen:Trojan.Heur.D.hm5@bqm8VTn

1.0.20.370

Dr.Web

Trojan.PWS.Banker1.12737

9.0.1.074

Emsisoft Anti-Malware

Gen:Trojan.Heur.D.hm5@bqm8VTn

8.17.03.15.06

ESET NOD32

Win32/Spy.Banker.AAEQ (variant)

11.9470

F-Secure

Gen:Trojan.Heur.D.hm5@bqm8VTn

11.2017-15-03_4

G Data

Gen:Trojan.Heur.D.hm5@bqm8VTn

17.3.24

IKARUS anti.virus

Trojan-Downloader.Win32.Banload

t3scan.2.2.29

Kaspersky

Trojan.Win32.ChePro

14.0.0.-1314

MicroWorld eScan

Gen:Trojan.Heur.D.hm5@bqm8VTn

18.0.0.222

Panda Antivirus

Trj/Genetic.gen

17.03.15.06

Qihoo 360 Security

Malware.QVM38.Gen

1.0.0.1015

Trend Micro House Call

PAK_Generic.001

7.2.74

Trend Micro

PAK_Generic.001

10.465.15

Vba32 AntiVirus

Trojan.ChePro

3.12.24.3

File size:

121 KB (123,916 bytes)

Common path:

C:\users\{user}\appdata\local\temp\curriculo.cpl

File PE Metadata

Compilation timestamp:

2/25/2014 3:06:51 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0x402E1

Entry point:

60, E8, 00, 00, 00, 00, 58, 05, 9F, 02, 00, 00, 8B, 30, 03, F0, 2B, C0, 8B, FE, 66, AD, C1, E0, 0C, 8B, C8, 50, AD, 2B, C8, 03, F1, 8B, C8, 57, 51, 49, 8A, 44, 39, 06, 88, 04, 31, 75, F6, 8B, D6, 8B, CF, E8, 5C, 00, 00, 00, 5E, 5A, 2B, C0, 89, 04, 32, B4, 10, 2B, D0, 2B, C9, 3B, CA, 73, 26, 8B, D9, AC, 41, 24, FE, 3C, E8, 75, F2, 43, 83, C1, 04, AD, 0B, C0, 78, 06, 3B, C2, 73, E5, EB, 06, 03, C3, 78, DF, 03, C2, 2B, C3, 89, 46, FC, EB, D6, E8, 00, 00, 00, 00, 5F, 81, C7, 8C, FF, FF, FF, B0, E9, AA, B8, 9B... 
[+]

Packer / compiler:

ASPack v1.08.04

Code size:

160 KB (163,840 bytes)

Remove curriculo.cpl - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.