wgpro.tmp

The file wgpro.tmp has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. While running, it connects to the Internet address post.securestudies.com on port 80 using the HTTP protocol.
Description:
Setup/Uninstall

Version:
51.52.0.0

MD5:
1305181de520f125aeabf85dc24a89d6

SHA-1:
98b7548fede3f1468ccbdee405abdc4e5d2ec671

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/4/2024 4:59:33 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Win.Reputation (M)
16.7.13.10

File size:
690.5 KB (707,072 bytes)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\wgpro.tmp

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):
Connects to 162-144-12-184.unifiedlayer.com  (162.144.12.184:80)

TCP (HTTP):
Connects to post.securestudies.com  (165.193.78.234:80)

Remove wgpro.tmp - Powered by Reason Core Security