» iProDifX.EXE
Overview
Analysis
File Details

iProDifX.EXE

iProDifX Application

Intel Corporation

The executable iProDifX.EXE, “iProDifX Installation Utility” has been detected as malware by 11 anti-virus scanners. This is a setup and installation application and has been known to bundle potentially unwanted software.

File name:

iProDifX.EXE

Publisher:

Intel Corporation (signed and verified)

Product:

iProDifX Application

Description:

iProDifX Installation Utility

Version:

14, 1, 0, 1

MD5:

6a01c5f09d772b90b8bce063ed257e2b

SHA-1:

821bec42af30c9243d92b7f210897b7390007186

SHA-256:

167672b5d5c83fd57130a9cf870bf84c7d48ef7e016a0cbcd74371af6b96f47c

Scanner detections:

11 / 68

Status:

Malware

Analysis date:

11/5/2024 3:32:59 PM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Mabezat [Wrm]

160518-2

AVG

Win32/Mabezat

2015.0.4568

Dr.Web

Win32.HLLW.Tazebama

9.0.1.05190

Emsisoft Anti-Malware

Win32.Worm.Mabezat.Gen

16.06.10

ESET NOD32

Win32/Mabezat.A virus

8.0.319.0

F-Prot

W32/Mabezat.A-2

4.6.5.141

F-Secure

Win32.Worm.Mabezat.Gen

5.15.96

Kaspersky

Worm.Win32.Mabezat

15.0.0.562

McAfee

Virus.W32/Mabezat.a

18.0.204.0

Microsoft Security Essentials

Threat.Undefined

1.223.1159.0

Norman

Win32.Worm.Mabezat.Gen

28.05.2016 15:32:18

File size:

1.6 MB (1,637,503 bytes)

Product version:

14, 1, 0, 0

Original file name:

iProDifX.EXE

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\intel\wifi\drivers\iprodifx.exe

Digital Signature

Signed by:

Intel Corporation

Authority:

Intel Corporation

Valid from:

8/7/2009 5:47:25 PM

Valid to:

1/24/2012 5:47:25 PM

Subject:

CN=Intel Corporation - Mobile Wireless Group, OU=Mobile Wireless Group, O=Intel Corporation, L=Hillsboro, S=OR, C=US

Issuer:

CN=Intel External Basic Issuing CA 3A, O=Intel Corporation, C=US

Serial number:

1D2CDBF500000000352F

File PE Metadata

Compilation timestamp:

6/1/2011 11:13:53 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

12288:/rdQM6UBO/XxcddrcCa/b/awWFS97HKrpMASlnWUb:/rdLIxcVS9jKrpMASlnWe

Entry address:

0x14435

Entry point:

BB, 1E, 4C, 0B, 15, 93, E9, 20, 01, 00, 00, DE, 84, E7, E3, 8F, 13, E7, E3, 77, 00, 7D, 67, 67, E7, 67, 67, 08, 67, 67, 67, C6, 98, 9D, 98, 97, 98, A0, 9E, 9D, 67, 67, 67, DB, C8, E1, CC, C9, C8, D4, C8, 95, CB, D3, D3, 67, 67, 67, 67, C3, 67, 67, 67, AD, D9, CC, CC, B3, D0, C9, D9, C8, D9, E0, 67, AA, D9, CC, C8, DB, CC, AB, D0, D9, CC, CA, DB, D6, D9, E0, A8, 67, 67, 67, 67, AE, CC, DB, BE, D0, D5, CB, D6, DE, DA, AB, D0, D9, CC, CA, DB, D6, D9, E0, A8, 67, 67, 67, 67, AE, CC, DB, B4, D6, CB, DC, D3, CC... 
[+]

Code size:

160 KB (163,840 bytes)

Remove iProDifX.EXE - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.