home

takshost.exe

Armen2

httrack.com

The executable takshost.exe has been detected as malware by 3 anti-virus scanners.
Publisher:
Stellar Information System Ltd  (signed by httrack.com)

Product:
Armen2

Version:
1.00

MD5:
6e5988dcf8d50fe5f784f7a7f3ed0886

SHA-1:
f5414f1138e052371b0a2694ea9d232c122366c1

SHA-256:
4428cce75694b3ebc04b33057ef9751116c619a02ecb5a3ae59d4cb1bafa58fb

Scanner detections:
3 / 68

Status:
Malware

Analysis date:
12/27/2024 3:22:40 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Malware-gen
160327-1

Microsoft Security Essentials
Threat.Undefined
1.217.518.0

VIPRE Antivirus
Threat.4150696
48090

File size:
1.3 MB (1,325,136 bytes)

Product version:
1.00

Original file name:
Nitrophyte6.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\takshost.exe

Digital Signature
Signed by:
httrack.com

Authority:
Unizeto Technologies S.A.

Valid from:
9/10/2014 8:46:50 AM

Valid to:
9/10/2015 8:46:50 AM

Subject:
E=roche@httrack.com, CN="Open Source Developer, httrack.com", O=httrack.com, C=FR

Issuer:
CN=Certum Level III CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
1439B5713BC6C663A553F7871A3E1E63

File PE Metadata
Compilation timestamp:
3/17/2016 2:44:50 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
24576:Y+w5SXCiOGvw/P6SQj1HACJTefH6sbamhiOj3CK5l9:5w5SXxnvw3UVnefH6sNhVjCKD9

Entry address:
0x104C

Entry point:
68, 94, A2, 52, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 38, 00, 00, 00, 00, 00, 00, 00, 68, F7, 95, B2, E6, F7, 8A, 4E, 94, 5F, C5, 92, 36, 75, 0C, 0F, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 04, 00, 00, 00, 4D, 6F, 65, 6B, 6F, 00, F5, 02, 00, 00, 00, 00, FF, CC, 31, 00, 01, 1B, 8F, 8D, 0C, FA, 98, 92, 44, 81, 07, BF, 74, 38, FD, E6, 5C, 84, 9C, 5E, D1, F2, 6B, FD, 45, BC, FB, 22, 72, 8A, 63, E1, BD, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00, AA, 00, 60, D3, 93, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
1.2 MB (1,290,240 bytes)

Remove takshost.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.