» cmdlineextinstallerexe.exe
Overview
Analysis
File Details

cmdlineextinstallerexe.exe

Sony DADC Austria AG

The executable cmdlineextinstallerexe.exe has been detected as malware by 9 anti-virus scanners.

File name:

Publisher:

Sony DADC Austria AG (signed and verified)

MD5:

06f0306e4837ab32a020a99b1c51895a

SHA-1:

f9883cb73b9a56e9896d07ea048177201303d4d2

SHA-256:

917acda32caeae100954b3bfaab3563e6ac788e786fea51b7be20379e323568a

Scanner detections:

9 / 68

Status:

Malware

Analysis date:

12/26/2024 3:24:49 PM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Parite

160216-3

AVG

Win32/Parite

2015.0.4530

Dr.Web

Win32.Parite.2

9.0.1.05190

ESET NOD32

Win32/Parite.B virus

8.0.319.0

F-Prot

W32/Parite.B

4.6.5.141

F-Secure

Win32.Parite.B

5.15.21

Kaspersky

Virus.Win32.Parite

15.0.0.562

McAfee

Virus.W32/Pate.b

18.0.204.0

Microsoft Security Essentials

Threat.Undefined

1.215.2325.0

File size:

541.5 KB (554,466 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Documents and Settings\{user}\Local settings\temp\cmdlineextinstallerexe.exe

Digital Signature

Signed by:

Sony DADC Austria AG

Authority:

VeriSign, Inc.

Valid from:

7/26/2006 2:00:00 AM

Valid to:

10/13/2008 1:59:59 AM

Subject:

CN=Sony DADC Austria AG, OU=Virtual Factory, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Sony DADC Austria AG, L=Salzburg, S=Salzburg, C=AT

Issuer:

CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

4B1EA5F9BBD49C5779A360EC82ED547C

File PE Metadata

Compilation timestamp:

5/16/2008 2:28:01 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

7.10

CTPH (ssdeep):

12288:G1Z06X/GT0xcph7v31+I3swcVMg+RYlcBZJcg9/Y:iZ0pIxkh7v313HCGHcQw

Entry address:

0x5D000

Entry point:

90, B8, F6, D7, 16, 00, 90, 68, 28, D0, 45, 00, 5F, 90, 90, BA, 98, 05, 00, 00, 90, FF, 34, 3A, 31, 04, 24, 8F, 04, 3A, 90, 90, 83, EA, 02, 83, EA, 02, 90, 90, 75, EB, 90, 90, 1E, AA, 17, 00, F6, D7, 16, 00, F6, D7, 56, 00, 9C, FF, 16, 00, 4E, 6B, 13, 00, 14, 12, 13, 00, F6, 67, 14, 00, F7, D7, 16, 00, EA, 07, 56, 00, 70, D4, 57, 00, 6E, D4, 57, 00, 56, D6, 17, 00, 72, D4, 17, 00, 60, D4, 17, 00, EA, 07, 16, 00, 72, D4, 17, 00, 60, D4, 17, 00, F6, D7, 16, 00, F6, D7, 16, 00, F6, D7, 16, 00, F6, D7, 16, 00... 
[+]

Code size:

48 KB (49,152 bytes)

Remove cmdlineextinstallerexe.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.