home

dup.exe

DUP

EMG Technology Limited

The application dup.exe by EMG Technology Limited has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program AirZip by EMG Technology Limited which is a potentially unwanted software program.
Publisher:
Woodtale Technology Inc.  (signed by EMG Technology Limited)

Product:
DUP

Description:
dupdate

Version:
1.0.86.8163

MD5:
d5a78dea9187cb27b94b54622ce9aafa

SHA-1:
dfe046f64b1cd7decaf9388ca976dfb07bfa1b81

SHA-256:
050f70c927f844f004554f1c7b27cec845bf186b81e5bb2711944760373b6707

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/28/2024 8:29:11 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
16.3.9.23

File size:
222.1 KB (227,472 bytes)

Product version:
1.0.86.8163

Copyright:
Copyright (C) 2012

Original file name:
dup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\airzip\dup.exe

Digital Signature
Signed by:
EMG Technology Limited

Authority:
GlobalSign nv-sa

Valid from:
7/31/2013 1:20:50 AM

Valid to:
8/1/2014 1:20:50 AM

Subject:
CN=EMG Technology Limited, O=EMG Technology Limited, L=HongKong, S=HongKong, C=HK

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11214B00008DA514B60ED8EE5329E4DF7F28

File PE Metadata
Compilation timestamp:
10/14/2013 7:58:00 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
3072:sz6akJ4kEdqYUn318Xaw/KQBgGbP3VyO58Da3lnY+xDUWuO0QEi0d4lXnNn:sz63ZnmXi2nP3VyhDSY+xDUWuOGnwnB

Entry address:
0x1E2E2

Entry point:
E8, BC, 06, 00, 00, E9, 6B, FD, FF, FF, 6A, 10, 68, 98, D0, 42, 00, E8, E8, 03, 00, 00, 33, C0, 89, 45, E0, 89, 45, FC, 89, 45, E4, 8B, 45, E4, 3B, 45, 10, 7D, 13, 8B, 75, 08, 8B, CE, FF, 55, 14, 03, 75, 0C, 89, 75, 08, FF, 45, E4, EB, E5, C7, 45, E0, 01, 00, 00, 00, C7, 45, FC, FE, FF, FF, FF, E8, 08, 00, 00, 00, E8, EF, 03, 00, 00, C2, 14, 00, 83, 7D, E0, 00, 75, 11, FF, 75, 18, FF, 75, E4, FF, 75, 0C, FF, 75, 08, E8, EA, FA, FF, FF, C3, CC, FF, 25, F0, 31, 42, 00, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44...
 
[+]

Entropy:
6.0234

Code size:
135.5 KB (138,752 bytes)

The file dup.exe has been discovered within the following program.

AirZip  by EMG Technology Limited
Publisher's description - “Airzip is a free and easy to use compression software that is based on 7-Zip technology. With its fast compression engine,Airzip is a powerful tool for unzipping Zip archives, creating Zip-compatible files and other archiving software.”
airzip.webssearches.com
About 60% of users remove it
 
Powered by Should I Remove It?

Remove dup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.