allmyapps.exe,

Project1

Allmyapps

The file allmyapps.exe, by Allmyapps has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Allmyapps  (signed and verified)

Product:
Project1

Version:
1.00

MD5:
3bbfd20f9a7cb292cd1f01ce60b0dacc

SHA-1:
f82c08a533a21a16e50ecaaa3390ff667bd21299

SHA-256:
8d06aaedebfa8f96d8d7127fe8e7a9bc6b2d37e0ab5599748a9762f15a16a261

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/14/2024 2:30:41 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
16.9.5.3

File size:
7.1 MB (7,451,736 bytes)

Product version:
1.00

Original file name:
TJprojMain.exe

Language:
English (United States)

Common path:
C:\users\{user}\appdata\roaming\allmyapps\allmyapps.exe,

Digital Signature
Signed by:

Authority:
Allmyapps

Valid from:
9/28/2010 1:56:10 PM

Valid to:
9/28/2011 1:56:10 PM

Subject:
E=contact@allmyapps.com, CN=api.allmyapps.com, O=Allmyapps, L=Paris, S=Some-State, C=FR

Issuer:
E=contact@allmyapps.com, CN=api.allmyapps.com, O=Allmyapps, L=Paris, S=Some-State, C=FR

Serial number:
00C2FB651E206DABD0

File PE Metadata
Compilation timestamp:
3/29/2013 6:43:28 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:XFnVS1h35tNTNksiYGUi5P0KfpM6oy6ac7MELkm+cB/XBgM1Vgj+HVKXfiPEWIZe:1C35fXBethm5/MNrMd7vKi7iDTxtO

Entry address:
0x282C

Entry point:
68, FC, 39, 40, 00, E8, EE, FF, FF, FF, 00, 00, 48, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 04, 7D, 33, EB, 79, F0, F3, 42, B6, 9B, CD, 75, 39, 6A, 05, 87, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 20, 20, 27, 46, 6C, 61, 50, 72, 6F, 6A, 65, 63, 74, 31, 00, 6B, 43, 6F, 6C, 6F, 72, 20, 00, 20, 20, 20, 20, 20, 3D, 20, 00, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 01, 00, 00, 00, 47, B9, 21, 88, 70, 8F, 72, 44, 84, A9, 83, FC, 14, 57, 21, 03, 01, 00, 00, 00, A0, 00, 00, 00...
 
[+]

Entropy:
7.1258

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
100 KB (102,400 bytes)

Remove allmyapps.exe, - Powered by Reason Core Security