home

quicktimeplayer.exe

The executable quicktimeplayer.exe has been detected as malware by 12 anti-virus scanners.
MD5:
eabe1d7e6f314ae8ef57b438fcd6372d

SHA-1:
42e7fe4aaaf19c289f7bd8d44a5dd581ae65f7f0

SHA-256:
72d7acbd5563af6eedfc12ea9c61337ef16e314eb2b3b61d50da8c4139be3b48

Scanner detections:
12 / 68

Status:
Malware

Analysis date:
5/2/2024 11:56:00 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Agnitum Outpost
Backdoor.IRCBot
7.1.1

Bkav FE
HW32.CDB
1.3.0.4959

Comodo Security
UnclassifiedMalware
18554

Dr.Web
BackDoor.IRC.Sdbot.14859
9.0.1.074

Malwarebytes
Backdoor.Bot
v2017.03.15.11

McAfee
Artemis!EABE1D7E6F31
5600.6095

Norman
Suspicious_Gen4.ECYUD
11.20170315

nProtect
Backdoor/W32.IRCBot.207872.E
14.06.15.01

SUPERAntiSpyware
Trojan.Agent/Gen-IRCBot
8534

Total Defense
malicious
37.0.10999

VIPRE Antivirus
Trojan.Win32.Generic
30304

Zillya! Antivirus
Trojan.IRCBot.Win32.2607
2.0.0.1825

File size:
203 KB (207,872 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\roaming\thinstall\camtasia studio 6\40000012b00002i\quicktimeplayer.exe

File PE Metadata
Compilation timestamp:
10/10/2008 12:57:53 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x1A83

Entry point:
9C, 60, 68, 53, 74, 41, 6C, 68, 54, 68, 49, 6E, E8, 00, 00, 00, 00, 58, BB, 94, 1A, 00, 00, 2B, C3, 50, 68, 00, 00, 40, 00, 68, 00, 28, 00, 00, 68, C8, 00, 00, 00, E8, 2C, FF, FF, FF, E9, 90, FF, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 55, 8B, EC, 83, C4, F4, FC, 53, 57, 56, 8B, 75, 08, 8B, 7D, 0C, C7, 45, FC, 08, 00, 00, 00, 33, DB, BA, 00, 00, 00, 80, 43, 33, C0, E8, 19, 01, 00, 00, 73, 0E, 8B, 4D, F8, E8, 27, 01, 00, 00, 02, 45, F7, AA, EB, E9, E8, 04, 01, 00, 00, 0F, 82, 96, 00, 00, 00, E8, F9...
 
[+]

Entropy:
7.1699

Code size:
6.5 KB (6,656 bytes)

Remove quicktimeplayer.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.