home

esp.exe

The application esp.exe has been detected as a potentially unwanted program by 3 anti-malware scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from openload.co.
MD5:
cc766d89d7f9752dff8c5113e9d12d9c

SHA-1:
0ee36170ee1e57cd7d4478e501fbf10ec8e41b3a

SHA-256:
f6fcb4198bae5db7cc919cc6b3f6a864161c5c3c1a47297c075d8864f0976748

Scanner detections:
3 / 68

Status:
Potentially unwanted

Analysis date:
12/26/2024 2:57:55 PM UTC  (today)

Scan engine
Detection
Engine version

F-Secure
Variant.Strictor.108323
5.15.96

McAfee
Trojan.Artemis!CC766D89D7F9
18.0.204.0

Reason Heuristics
PUP.InstallMonster
16.8.1.13

File size:
2.4 MB (2,487,808 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Documents and Settings\{user}\My documents\esp.exe

File PE Metadata
Compilation timestamp:
6/13/2016 7:05:18 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.50

CTPH (ssdeep):
49152:C/4V+jjLa/D3c6rdgMc/wxuhrTtkroiA0915K:Cksm/D3mHo2Hmr9P918

Entry address:
0x18FFA30

Entry point:
EB, 08, 45, 5F, 25, 00, 00, 00, 00, 00, E9, 9C, A7, EB, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Code size:
2.4 MB (2,481,152 bytes)

The file esp.exe has been seen being distributed by the following URL.

https://openload.co/.../opmob-GnyzU~1465931687~191.44.0.0~PQ6OkdHJ

Remove esp.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.