home

PatchFrSvc.exe

PatchFrSvc

BullDoz

Publisher:
BullDoz

Product:
PatchFrSvc

Description:
Mises à jour de PatchFr

Version:
1.00.0002

MD5:
e065c2cdd200f76bf9029f3506bec847

SHA-1:
c02f4c420bd4c1498d897a99c14fd6304a1a6713

SHA-256:
c25f637fdc91fd56e9e6624bd971f4b2acf83a50b0ee9dde5e430223cb238b72

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/24/2024 8:46:08 PM UTC  (today)

Scan engine
Detection
Engine version

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1120

Quick Heal
(Suspicious) - DNAScan
4.16.14.00

File size:
104 KB (106,496 bytes)

Product version:
1.00.0002

Copyright:
scraper (scraper@pcland.fr)

Trademarks:
BullDoz

Original file name:
PatchFrSvc.exe

Language:
French (France)

Common path:
C:\users\{user}\appdata\local\temp\5cdd.tmp

File PE Metadata
Compilation timestamp:
2/14/2016 7:54:11 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
3072:oUk5blSCPsgZjV2tUiFD2BowG2sxs8ky2L4TnT3NK5eTNjwjc:+BPAFtwGBxsl6TqeOj

Entry address:
0x18F4

Entry point:
68, 00, 4C, 40, 00, E8, EE, FF, FF, FF, 00, 00, 50, 00, 00, 00, 30, 00, 00, 00, 48, 00, 00, 00, 00, 00, 00, 00, B7, 5D, 8B, 49, 8A, 74, C1, 4E, B3, 1E, D7, 5F, 72, F7, 86, CB, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 70, 72, 6F, 55, 70, 64, 61, 74, 65, 43, 68, 65, 63, 6B, 65, 72, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 98, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 04, 00, 00, 00, D5, 43, A7, E8, 77, 0E, 2A, 4B, 8C, DF, FA, 78, 51, AF, 5F, DD...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
92 KB (94,208 bytes)

The file PatchFrSvc.exe has been seen being distributed by the following URL.

http://pcland.fr/PatchFr/.../PatchFrSvc.exe

Scan PatchFrSvc.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.