» не подтвержден 573875.crdownload
Overview
Analysis
File Details

не подтвержден 573875.crdownload

Dr.Web

KOMP-GARANT

The file не подтвержден 573875.crdownload, “Agent for Windows” has been detected as malware by 1 anti-virus scanner.

File name:

Publisher:

Doctor Web, Ltd. (signed by KOMP-GARANT)

Product:

Dr.Web ®

Description:

Agent for Windows

Version:

6.0.1.07066

MD5:

bc524bba4e351043d522ff9ee187c66b

SHA-1:

877f46c15df80dae82edbcc58c78c20abc1969b6

SHA-256:

dda4a4c351c14d1b3364cf8779a55de53819cacfa638d46410b5b8da661a72cb

Scanner detections:

1 / 68

Status:

Malware

Analysis date:

11/15/2024 6:24:31 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP (M)

17.2.10.16

File size:

695 KB (711,680 bytes)

Product version:

6.0.1.07066

Original file name:

SpIDerAgent.exe

Common path:

C:\users\{user}\downloads\не подтвержден 573875.crdownload

Digital Signature

Signed by:

KOMP-GARANT

Authority:

COMODO CA Limited

Valid from:

10/9/2015 3:00:00 AM

Valid to:

10/9/2016 2:59:59 AM

Subject:

CN="""KOMP-GARANT"",OOO", O="""KOMP-GARANT"",OOO", STREET="d. 4 korp. 3 kv. VI, ul.Kirovogradskay", L=Moscow, S=Moscow, PostalCode=117587, C=RU

Issuer:

CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00DDF03E3656C370A166F00225E6978B94

File PE Metadata

Compilation timestamp:

6/20/1992 1:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0x89A50

Entry point:

52, 51, 89, FF, 75, 02, 37, 90, 01, FE, E8, 99, ED, FF, FF, 4E, 90, 58, 59, EB, 08, 90, 12, 77, 04, FC, 90, FC, 90, 68, C8, 9A, 48, 00, E9, 7F, BB, 00, 00, E8, 84, 75, F7, FF, 89, FE, F5, F9, 8D, 5B, E4, F9, 85, C9, 8D, 76, 41, 29, 1D, 67, E0, 48, 00, 66, 81, FF, 2A, 49, F5, 89, 05, FD, E0, 48, 00, 80, EC, 52, 0F, BF, C7, C6, 45, FB, 00, C0, C8, 92, D2, E0, F7, D0, A1, B0, 0A, 49, 00, 66, 85, CF, A9, 01, 1B, 7A, 37, E9, B0, B4, 00, 00, D5, 77, 9A, C7, E8, 41, 75, F7, FF, C3, FE, 05, 45, E0, 48, 00, E9, 75... 
[+]

Code size:

572 KB (585,728 bytes)

Remove не подтвержден 573875.crdownload - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.