home

snsea75e.tmp

It runs as a separate (within the context of its own process) windows Service named “Hard Drive Move”.
MD5:
bb267050ac7bdfd51e602319efaa9bdc

SHA-1:
56e4dcd52ae66f2b9d9776c624d476b159c0f1bf

SHA-256:
259084c123a30e55fd92551c8f988930384c3bfe58d010e62e7d13cb186c19f6

Scanner detections:
6 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/1/2024 11:59:44 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Crypt.XPACK.Gen
8.3.2.2

F-Prot
W32/SuspPack.AA.gen
v6.4.7.1.166

IKARUS anti.virus
Trojan.Crypt
t3scan.1.9.5.0

McAfee
Artemis!BB267050AC7B
5600.6094

Qihoo 360 Security
HEUR/QVM00.1.Malware.Gen
1.0.0.1015

VIPRE Antivirus
Trojan.Win32.Generic
44892

File size:
174.5 KB (178,688 bytes)

Common path:
C:\users\{user}\appdata\local\11af9080-1445247647-1016-8ca0-d996cd1bdc61\snsea75e.tmp

File PE Metadata
Compilation timestamp:
1/1/2008 11:55:28 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
7.0

Entry address:
0x1C0

Entry point:
33, C0, C2, 08, 00, 00, 00, 00, 0D, 0A, 0D, 0A, 54, 68, 69, 73, 20, 66, 69, 6C, 65, 20, 77, 61, 73, 20, 73, 61, 6E, 69, 74, 69, 7A, 65, 64, 20, 62, 79, 20, 61, 76, 61, 73, 74, 21, 20, 41, 6E, 74, 69, 76, 69, 72, 75, 73, 2E, 0D, 0A, 0D, 0A, 00, 00, 59, 19, 8E, 8B, 00, 00, 00, 00, 02, 00, 00, 8C, 00, 00, 00, F0, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 40, 00, 00, 40, 2E, 64, 61, 74, 61, 00, 00, 00, 84, 32, 00, 00, 00, 90, 02, 00, 00, 14, 00, 00, 00, 7C, 02, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.4309

Code size:
128 Bytes (128 bytes)

Service
Display name:
Hard Drive Move

Service name:
godimuhe

Description:
Manual Search

Type:
Win32OwnProcess


Scan snsea75e.tmp - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.