home

HijackThis.exe

HijackThis

Trend Micro Inc.

This is a setup program which is used to install the application. The file has been seen being downloaded from drummerdonnie.com.
Publisher:
Trend Micro Inc.

Product:
HijackThis

Version:
2.00.0004

MD5:
a8a4ec5593b2ce1caa4846ab45233521

SHA-1:
10fcc941245d89502e2e8471ae8aeb6a59a36cb8

SHA-256:
58011cec83cc263885423acce58bd1e90a2bd68d0fdc13b0444220c1f5e9454f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 9:41:03 AM UTC  (today)

File size:
460 KB (471,040 bytes)

Product version:
2.00.0004

Copyright:
(c) 2007 Trend Micro Inc

Trademarks:
©

Original file name:
HijackThis.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\hijackthis.exe

File PE Metadata
Compilation timestamp:
4/12/2010 8:50:51 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6144:DHgNL/htwPszyJNUFIuBgjV3b/ItgODuoPh4X464yv2jyE808x2LmLbzuScGGSDx:KVt8BURgxr/V+phmdE808YKjFKxa2raR

Entry address:
0x141850

Entry point:
FF, CE, 71, 02, FE, C4, FF, C3, 89, C0, F2, F2, 87, ED, 76, 05, 2C, 3E, 87, D5, F3, 33, F7, 4D, 72, 02, 21, EE, FF, CD, 11, C7, 73, 0B, 84, E3, C7, C2, EC, E6, E2, EE, 80, E7, 49, 69, C6, 03, BD, D1, 07, 8B, E8, 0F, BE, D7, E8, A4, 00, 00, 00, 49, F3, EB, 08, F2, B9, 19, F9, B8, 44, 10, E8, 8D, 2D, B7, 39, 4B, A4, FE, CF, 86, EA, 2D, A2, E1, 71, 47, 0F, BE, C0, 81, ED, 27, 24, D4, A2, 8B, F0, F6, C2, FA, 4B, 88, DA, F3, FF, C1, 80, D7, 54, 2B, FE, 69, D3, 82, 6E, 2D, 70, 8D, 15, 34, A9, 32, 5B, 0F, BF, D3...
 
[+]

Code size:
272 KB (278,528 bytes)

The file HijackThis.exe has been seen being distributed by the following URL.

http://drummerdonnie.com/Archive/UTILITIES/.../HijackThis.exe

Scan HijackThis.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.