home

moleedefc.exe

MOLEEDEFC

Kharkiv Vagon-Remont, LLC

The file moleedefc.exe by Kharkiv Vagon-Remont has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
©Oatriagucta reivlesa loteamehi   (signed by Kharkiv Vagon-Remont, LLC)

Product:
MOLEEDEFC

Version:
2.3.0.2

MD5:
edff83b942627404da9be06bd0fe63fd

SHA-1:
f3201c12cafbda6e2e128c5a535cddedbc12af44

SHA-256:
a5522545d06b46f29be4ff27f40566ad888a11f40d5abe4e417ae38f6616c3ea

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/16/2024 1:41:41 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Bundler (M)
17.3.4.1

File size:
3.6 MB (3,792,920 bytes)

Product version:
2.3.0.2

Copyright:
©Oatriagucta reivlesa loteamehi

Original file name:
moleedefc.exe

Language:
English (United States)

Common path:
C:\windows\temp\d71.tmp

Digital Signature
Signed by:
Kharkiv Vagon-Remont, LLC

Authority:
COMODO CA Limited

Valid from:
2/27/2017 1:00:00 AM

Valid to:
12/6/2017 12:59:59 AM

Subject:
CN="Kharkiv Vagon-Remont, LLC", OU="Kharkiv Vagon-Remont, LLC", O="Kharkiv Vagon-Remont, LLC", STREET=Bud 12 prospekt Gagarina, L=Kharkiv, S=Ukraine, PostalCode=61010, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
14187F3D7A3D49722B990B2706F02D14

File PE Metadata
Compilation timestamp:
7/5/2014 12:03:00 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

Entry address:
0x386ADE

Entry point:
E8, 2C, 13, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, 8B, 00, 81, 38, 63, 73, 6D, E0, 75, 2A, 83, 78, 10, 03, 75, 24, 8B, 40, 14, 3D, 20, 05, 93, 19, 74, 15, 3D, 21, 05, 93, 19, 74, 0E, 3D, 22, 05, 93, 19, 74, 07, 3D, 00, 40, 99, 01, 75, 05, E8, 86, 13, 00, 00, 33, C0, 5D, C2, 04, 00, 68, E8, 6A, 78, 00, FF, 15, 64, 02, 79, 00, 33, C0, C3, 8B, FF, 55, 8B, EC, 68, 18, 0C, 79, 00, FF, 15, 4C, 02, 79, 00, 85, C0, 74, 15, 68, 08, 0C, 79, 00, 50, FF, 15, 68, 02, 79, 00, 85, C0, 74, 05, FF, 75...
 
[+]

Code size:
3.6 MB (3,730,432 bytes)

Remove moleedefc.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.