home

xrfigdpzzyfg.exe

Integra Premium

The executable xrfigdpzzyfg.exe has been detected as malware by 1 anti-virus scanner.
Publisher:
Integra Premium  (signed and verified)

MD5:
edc4d9e3ab6af779193d6c8e0876dd86

SHA-1:
96131c81125eabeafb97c13a42a1691aebdc63eb

SHA-256:
d580ca4db04b72a64e77d2255f10ed2b234403e2bef32b457ba39e46c499df52

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/6/2024 6:43:42 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.3.13.17

File size:
539.5 KB (552,480 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\xrfigdpzzyfg.exe

Digital Signature
Signed by:
Integra Premium

Authority:
COMODO CA Limited

Valid from:
7/7/2016 3:00:00 AM

Valid to:
7/8/2017 2:59:59 AM

Subject:
CN=Integra Premium, O=Integra Premium, STREET="57, str.5, ul.Sadovnicheskaya", L=Moscow, S=Moscow, PostalCode=115035, C=RU

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
64A3680CFAFADA34402FB2F4DCA460DC

File PE Metadata
Compilation timestamp:
7/26/2016 1:48:20 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x12B0

Entry point:
55, 8B, EC, B8, 98, 8B, 00, 00, E8, D3, FF, FF, FF, 53, 56, 57, C6, 45, F4, 3E, C1, E9, 00, 68, CF, 12, 40, 00, C3, 33, EB, EB, 02, 33, DD, 90, 8B, D2, 8D, 12, EB, 01, 50, EB, 02, 03, C7, EB, 02, 2B, C2, 68, EF, 12, 40, 00, C3, 81, C2, 6E, 9B, 47, 0A, C7, 85, 74, 77, FF, FF, 05, 00, 00, 00, 8B, 85, 74, 77, FF, FF, 83, C0, 0D, 89, 85, 74, 77, FF, FF, 81, BD, 74, 77, FF, FF, 89, D8, 00, 00, 76, 02, EB, 1C, 6A, 00, FF, 15, 4C, 70, 40, 00, 68, 84, 00, 41, 00, FF, 15, 48, 70, 40, 00, B9, 1F, 02, 00, 00, 85, C9...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
23 KB (23,552 bytes)

Remove xrfigdpzzyfg.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.