» wgpro.tmp
Overview
Analysis
File Details
Network (2)

wgpro.tmp

The file wgpro.tmp has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. While running, it connects to the Internet address post.securestudies.com on port 80 using the HTTP protocol.

File name:

wgpro.tmp

Description:

Setup/Uninstall

Version:

51.52.0.0

MD5:

1305181de520f125aeabf85dc24a89d6

SHA-1:

98b7548fede3f1468ccbdee405abdc4e5d2ec671

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

11/23/2024 12:25:28 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Win.Reputation (M)

16.7.13.10

File size:

690.5 KB (707,072 bytes)

Language:

Language Neutral

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\wgpro.tmp

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):

Connects to 162-144-12-184.unifiedlayer.com (162.144.12.184:80)

TCP (HTTP):

Connects to post.securestudies.com (165.193.78.234:80)

Remove wgpro.tmp - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.