904805.gz.tdl

The file 904805.gz.tdl has been detected as a potentially unwanted program by 8 anti-malware scanners.
MD5:
cc339be1b29e4fc777dc3540421fcf8c

SHA-1:
14e1cd61548c1dec8c147181044c0905658b6b99

SHA-256:
10d848878ff22e15e8f4dad86a432dc234f0dd8b67461e0d399825913c34096b

Scanner detections:
8 / 68

Status:
Potentially unwanted

Analysis date:
12/26/2024 3:36:47 PM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Riskware.Agent
7.1.1

Baidu Antivirus
PUA.Win32.Speedchecker
4.0.3.15521

Dr.Web
Program.Unwanted.12
9.0.1.0115

ESET NOD32
Win32/Speedchecker.B potentially unwanted application
7.0.302.0

herdProtect (fuzzy)
2015.7.26.20

Panda Antivirus
PUP/SpeedUpMyPC
15.05.21.03

Reason Heuristics
Threat.Win.Reputation.IMP
15.4.25.19

Trend Micro House Call
Suspicious_GEN.F47V0425
7.2.141

File size:
395.7 KB (405,242 bytes)

Common path:
C:\users\{user}\appdata\local\temp\904805.gz.tdl

File PE Metadata
Compilation timestamp:
4/8/2012 7:37:51 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:dWpJ0TonZvReCGKYp2LQvsnzwpAZf+7QtVgglcYh4z1v9yX9Lk39pkv5uT:UdEszh+7QtCFYqz1v9yX9LkNCRuT

Entry address:
0x2F16A

Entry point:
E8, 9E, 79, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, 33, C9, 3B, 04, CD, 58, C4, 45, 00, 74, 13, 41, 83, F9, 2D, 72, F1, 8D, 48, ED, 83, F9, 11, 77, 0E, 6A, 0D, 58, 5D, C3, 8B, 04, CD, 5C, C4, 45, 00, 5D, C3, 05, 44, FF, FF, FF, 6A, 0E, 59, 3B, C8, 1B, C0, 23, C1, 83, C0, 08, 5D, C3, E8, 9D, 5F, 00, 00, 85, C0, 75, 06, B8, C0, C5, 45, 00, C3, 83, C0, 08, C3, E8, 8A, 5F, 00, 00, 85, C0, 75, 06, B8, C4, C5, 45, 00, C3, 83, C0, 0C, C3, 8B, FF, 55, 8B, EC, 56, E8, E2, FF, FF, FF, 8B, 4D, 08...
 
[+]

Code size:
299.5 KB (306,688 bytes)

Remove 904805.gz.tdl - Powered by Reason Core Security