vs5ro3ji.00e

CleanMyPC Registry Cleaner

CleanMyPC Software

The file vs5ro3ji.00e, “Backup64 Helper For CleanMyPC RegCleaner” by CleanMyPC Software has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
CleanMyPC Software  (signed and verified)

Product:
CleanMyPC Registry Cleaner

Description:
Backup64 Helper For CleanMyPC RegCleaner

Version:
4, 1, 0, 0

MD5:
55297d1a1086ae14a4d9bb9b17f8b7c8

SHA-1:
c61e332d0b25988e37419919bfccf01dd1429efd

SHA-256:
ca4bc8af04c14bef80cdf1e7823155adf53cd5a0d247f6989fc6f83b9ed7d930

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/25/2024 1:04:35 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win64.Generic
16.10.29.22

File size:
135.6 KB (138,808 bytes)

Product version:
4, 1, 0, 0

Copyright:
Copyright (C) 2009

Trademarks:
CleanMyPC

Original file name:
Backup64.exe

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\hc_attk\vs5ro3ji.00e

Digital Signature
Authority:
The USERTRUST Network

Valid from:
3/29/2007 9:00:00 PM

Valid to:
3/29/2010 8:59:59 PM

Subject:
CN=CleanMyPC Software, O=CleanMyPC Software, STREET="Room 305, Building 01B, MuXuYuan Street 66#", L=NanJing, S=JiangSu, PostalCode=210007, C=CN

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00A8AC359D82019ABB29423B87491BA8C5

File PE Metadata
Compilation timestamp:
5/12/2009 6:42:30 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
3072:FI20h1bn+3aMWYhgT3uxk1QmhnDMic8/RmQd5yp0f0:FI20f6aUHxk1QmhnIX858pW0

Entry address:
0x55E4

Entry point:
48, 83, EC, 28, E8, 9B, 35, 00, 00, 48, 83, C4, 28, E9, 16, FE, FF, FF, CC, CC, 40, 53, 48, 83, EC, 20, BA, 08, 00, 00, 00, 8D, 4A, 18, E8, 9D, 36, 00, 00, 48, 8B, C8, 48, 8B, D8, E8, F2, 1D, 00, 00, 48, 89, 05, 53, EE, 00, 00, 48, 89, 05, 44, EE, 00, 00, 48, 85, DB, 75, 05, 8D, 43, 18, EB, 06, 48, 83, 23, 00, 33, C0, 48, 83, C4, 20, 5B, C3, CC, CC, 48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 48, 89, 7C, 24, 18, 41, 54, 41, 55, 41, 56, 48, 83, EC, 20, 4C, 8B, F1, E8, 2B, 25, 00, 00, 90, 48, 8B, 0D, 0B, EE, 00...
 
[+]

Code size:
48 KB (49,152 bytes)

Remove vs5ro3ji.00e - Powered by Reason Core Security