Hi Everyone,
HitmanPro was doing a routine scan, file date is 01/26/17.I have a file that is potentially malicious, has an invalid/no digital signature and is from Intel. It has a 55% malicious rating and I am on the fence about what to do. Anyone's advice would be appreciated!
Screenshots in Hybris-Analysis Link
By cross referencing the memory forensics - I get a malicious indicator from Metadefender (1/5) (queried VTotal for the appcrawler website IP.
MetaDefender exe Analysis
Hybrid Analysis
VirusTotal
It was in location:C:\ProgramData\Package Cache\{dda6f161-ee24-46c4-9ebb-45abd7cf0eb7}
I am wondering if It's a FP. HitmanPro was doing a routine scan, file date is 01/26/17.
Another file in the directory was: state.rsm
If I quarantine it, and its an Intel related file - will I screw up my PC?
Thanks to anyone for your help.
HitmanPro was doing a routine scan, file date is 01/26/17.I have a file that is potentially malicious, has an invalid/no digital signature and is from Intel. It has a 55% malicious rating and I am on the fence about what to do. Anyone's advice would be appreciated!
Screenshots in Hybris-Analysis Link
By cross referencing the memory forensics - I get a malicious indicator from Metadefender (1/5) (queried VTotal for the appcrawler website IP.
MetaDefender exe Analysis
Hybrid Analysis
VirusTotal
It was in location:C:\ProgramData\Package Cache\{dda6f161-ee24-46c4-9ebb-45abd7cf0eb7}
I am wondering if It's a FP. HitmanPro was doing a routine scan, file date is 01/26/17.
Another file in the directory was: state.rsm
If I quarantine it, and its an Intel related file - will I screw up my PC?
Thanks to anyone for your help.