» lisies.exe
Overview
Analysis
File Details
Behaviors (1)

lisies.exe

The executable lisies.exe has been detected as malware by 8 anti-virus scanners. It runs as a separate (within the context of its own process) windows Service named “Graphics Display Cache Manager”.

File name:

lisies.exe

MD5:

d4bb2dd760d6605abca684686d01bc95

SHA-1:

6f75f1e1aeca7a7b1644e229a6e15310ab631c1c

SHA-256:

54afa9740ad4a4f08abc5ac381d7e1dfccc8f4b24bfbb9abfee7cc1493c50497

Scanner detections:

8 / 68

Status:

Malware

Analysis date:

4/30/2024 5:14:27 PM UTC (today)

Scan engine

Detection

Engine version

Avira AntiVirus

BDS/Backdoor.Gen2

7.10.6.5

Emsisoft A-Squared

Trojan-Dropper.Delf!IK

4.5.0.50

avast!

Win32:Rootkit-gen

2014.9-170304

ESET NOD32

Win32/Delf.OVF (variant)

11.4986

F-Prot

W32/Agent.EB.gen

v6.4.5.1.85

G Data

Win32:Rootkit-gen

17.3.19

IKARUS anti.virus

Trojan-Dropper.Delf

t3scan.1.1.80.0

Rising Antivirus

Trojan.Win32.DelfCode.ab

23.00.65.17302

File size:

602 KB (616,448 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\common files\iefoe\lisies.exe

File PE Metadata

Compilation timestamp:

4/18/2008 9:40:15 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0x80960

Entry point:

55, 8B, EC, 83, C4, F0, 53, B8, 0C, FC, 47, 00, E8, 87, 63, F8, FF, A1, F0, 34, 48, 00, 8B, 00, 8B, 10, FF, 52, 34, 8B, 0D, 00, 37, 48, 00, A1, F0, 34, 48, 00, 8B, 00, 8B, 15, 90, F5, 47, 00, 8B, 18, FF, 53, 30, A1, F0, 34, 48, 00, 8B, 00, 8B, 10, FF, 52, 38, 5B, E8, 4D, 41, F8, FF, 90, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

6.5616

Developed / compiled with:

Microsoft Visual C++

Code size:

510.5 KB (522,752 bytes)

Service

Display name:

Graphics Display Cache Manager

Service name:

GDCM

Type:

Win32OwnProcess

Remove lisies.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.