home

22ee.tmp.exe

Supersoft FAST-EAP Module

Supersoft

The application 22ee.tmp.exe by Supersoft has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is also typically executed from the user's temporary directory.
Publisher:
Supersoft  (signed and verified)

Product:
Supersoft FAST-EAP Module

Version:
14.5.0.0

MD5:
34474b64cc1566e016aafd98a62e99cb

SHA-1:
979a880ecf001336cf5a580e5007242166df17e4

SHA-256:
6ef4ab89d87682f0384505c9bc2bb6843c9e0bbb805a57ab2aa1e968f6a5c92d

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/30/2024 11:00:27 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
16.8.15.0

File size:
34.7 KB (35,560 bytes)

Product version:
14.5.2.5

Copyright:
Copyright (C) Supersoft 2013

Original file name:
Supersoft.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\22ee.tmp.exe

Digital Signature
Signed by:
Supersoft

Authority:
Supersoft

Valid from:
9/30/2012 11:26:38 AM

Valid to:
1/1/2040 1:59:59 AM

Subject:
CN=Supersoft

Issuer:
CN=Supersoft

Serial number:
6B50254A40C7CFB14A405056B8F04272

File PE Metadata
Compilation timestamp:
10/28/2013 10:51:17 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
768:ZTRFTofBpX3qF38kBoBcZHjG49hLQYT0fT8qODkn/mI3:xPTofBpXaF38NSHJ9exT8qODkn/j3

Entry address:
0x1DD0

Entry point:
55, 8B, EC, 68, AF, F3, D5, 00, FF, 15, 24, 30, 40, 00, 8B, 45, 14, 3D, 00, 05, 00, 00, 74, 64, 3D, 00, 10, 00, 00, 74, 45, 3D, 00, 15, 00, 00, 75, 6B, 6A, 00, FF, 75, 08, 6A, 00, 6A, 00, 68, 00, 00, 00, 80, 68, 00, 00, 00, 80, 68, 00, 00, 00, 80, 68, 00, 00, 00, 80, 68, 00, 00, CF, 00, 68, F0, 30, 40, 00, 68, 0C, 31, 40, 00, 6A, 00, FF, 15, 54, 30, 40, 00, 85, C0, 75, 33, 33, C0, 5D, C2, 10, 00, 6A, 00, 68, EB, 95, 47, 00, 68, 78, 31, 40, 00, FF, 15, 70, 30, 40, 00, 85, C0, 78, 56, EB, 15, 68, 48, 56, 2F...
 
[+]

Entropy:
6.6151

Developed / compiled with:
Microsoft Visual C++

Code size:
5 KB (5,120 bytes)

Remove 22ee.tmp.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.