vsh8gsp7.000

InstallShield

Acresso Software Inc.

The file vsh8gsp7.000, “InstallShield (R) Setup Engine” has been detected as a potentially unwanted program by 8 anti-malware scanners.
Publisher:
Acresso Software Inc.

Product:
InstallShield

Description:
InstallShield (R) Setup Engine

Version:
16.0.400

MD5:
9639b438e879a753fdaf08fbae3189ae

SHA-1:
16b6ea34c7f5f60eb2e8466cb7a69ed22e94ec0e

SHA-256:
49276d15a77deed2df1fdfc15c1aa2ac707d4246a0853d3abf7fe13a9237bfc9

Scanner detections:
8 / 68

Status:
Potentially unwanted

Analysis date:
11/27/2024 11:49:23 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

AVG
Win32/Heur
2015.0.4355

Comodo Security
TrojWare.Win32.PSW.GamePass.E
22758

ESET NOD32
Win32/RiskWare.PEMalform.B application
7.0.302.0

Fortinet FortiGate
W32/Onlinegames.ASE!tr
7/14/2015

IKARUS anti.virus
PUA.RiskWare.PEMalform
t3scan.1.9.5.0

NANO AntiVirus
Trojan.Win32.Banz.comyw
0.30.24.2487

Rising Antivirus
PE:Packer.Win32.Crypt.eg!1075333760
23.00.65.15712

VIPRE Antivirus
Threat.4150696
41608

File size:
1.7 MB (1,744,896 bytes)

Product version:
16.0

Copyright:
Copyright (C) 2009 Acresso Software Inc. and/or InstallShield Co. Inc. All Rights Reserved.

Original file name:
iKernel.dll

Common path:
C:\ProgramData\application data\trend micro\amsp\temp\virus\vsh8gsp7.000

File PE Metadata
Compilation timestamp:
9/22/2009 12:58:40 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:iJdVUthAn2bSkABxlJuVWF2FBHddukoE3GtXjypUrbW0ocvDNvHzdQ7:i2tunOSVJc1zdnGlybO5e

Entry address:
0x1A86B0

Entry point:
53, 57, 56, 55, E8, 00, 00, 00, 00, 5D, 81, ED, 4C, 13, 00, 10, 8D, B5, 43, 13, 00, 10, 8B, 46, FC, 83, C0, 04, 2B, F0, FC, 8B, DE, 8B, 56, 08, 8B, 76, 1C, 03, F2, 8D, BD, 2F, 1F, 00, 10, AD, AB, AD, AB, AD, AB, AD, AB, 90, 83, 7B, 48, 01, 74, 15, 8B, 73, 44, 85, F6, 74, 0E, B9, 23, 00, 00, 00, 03, F2, 8B, 7B, 40, 03, FA, F3, A4, 8B, F3, 8D, BD, 1B, 1F, 00, 10, 01, 2F, 01, 6F, 04, 01, 6F, 08, 8D, 8D, FF, 1E, 00, 10, 51, E8, 46, 01, 00, 00, 90, 90, 90, 90, 90, 90, 90, 90, 8B, 4E, 2C, 89, 8D, 2B, 1F, 00, 10...
 
[+]

Entropy:
3.3040

Code size:
1008 KB (1,032,192 bytes)

Remove vsh8gsp7.000 - Powered by Reason Core Security