home

libre webcam plugin.exe

Application

MalTech Incorporation

The executable libre webcam plugin.exe has been detected as malware by 10 anti-virus scanners.
Publisher:
Libre Inc.  (signed by MalTech Incorporation)

Product:
Application

Description:
Pluging Webcam

Version:
6.2.3.1

MD5:
598c050850e9dfbd17316063cd1de0ec

SHA-1:
ca068ed0acced51bc4047a1f9229965f0eac0852

SHA-256:
45553bfbe38c3a929e2da29937bbaa6086f3857a3f10e630e18123617154f2ec

Scanner detections:
10 / 68

Status:
Malware

Analysis date:
11/24/2024 2:56:03 PM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
Trojan/Win32.MSIL.N2038507665
3.7.4.14

Avira AntiVirus
TR/Dropper.MSIL.nxuo
8.3.3.4

avast!
MSIL:GenMalicious-FBL [Trj]
2014.9-161004

Baidu Antivirus
Win32.Trojan.WisdomEyes.151026.9950
4.0.3.16104

ESET NOD32
Win32/Kryptik.FBFM (variant)
10.13749

Fortinet FortiGate
MSIL/Kryptik.GNE!tr
10/4/2016

K7 AntiVirus
Trojan
13.232.20124

McAfee
Artemis!598C050850E9
5600.6257

Qihoo 360 Security
HEUR/QVM03.0.0000.Malware.Gen
1.0.0.1120

Sophos
Mal/Generic-S
4.98

File size:
641.5 KB (656,904 bytes)

Product version:
6.2.3.1

Copyright:
Copyright @ 2016

Original file name:
g6MTgvrCqdoVZydb8QtjOEsCleQuzeK8elkJ2pEDzeLEyF.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\libre webcam plugin.exe

Digital Signature
Signed by:
MalTech Incorporation

Authority:
MalTech Incorporation

Valid from:
6/28/2016 6:59:10 AM

Valid to:
6/29/2026 6:59:10 AM

Subject:
E=sales@maltech.net, CN=*.maltech.net, OU=MT Dept, O=MalTech Incorporation, L=Ankara, S=Central Anatolia, C=TR

Issuer:
E=sales@maltech.net, CN=*.maltech.net, OU=MT Dept, O=MalTech Incorporation, L=Ankara, S=Central Anatolia, C=TR

Serial number:
00CEB7057124641D8C

File PE Metadata
Compilation timestamp:
7/1/2016 1:01:55 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:l4sLaZ6JsWcHiEbCYDyT5aSBKxjXiJ7k5k41f8e6USX+rNAdgor8Xm/MAa:l4PW2fbCYmsxwQdhX347dgor8Hd

Entry address:
0x435CE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
264 KB (270,336 bytes)

Remove libre webcam plugin.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.