ACU.exe
ACU by Atheros Communications Inc. (Signed)
Warning 3 antivirus scanners has detected malware in various versions of ACU.exe.
Overview
There are 7 versions of ACU.exe in the wild, the latest version being 8.0.0.232. ACU.exe is run as a standard windows process with the logged in user's account privileges. During installation, a run registry key for all users is added that will cause the program to run each time any user logs on to Windows. The average file size is about 414.24 KB. The file is a digitally signed and issued to Atheros Communications Inc. by VeriSign. During the process's lifecycle, the typical CPU resource utilization is less than 0.01%, the average private memory consumption is about 5.62 MB with the maximum memory reaching around 7.58 MB. Addionally, typically read and write I/O disk operations is about 44 Bytes per minute for reads and 47 Bytes per minute for writes.
What is ACU.exe?
The Atheros Client Utility (ACU) is a user-mode utility designed to edit and add profiles, as well as display display diagnostics pertaining to the Atheros network adapter.
 Details
|
| File name: | ACU.exe |
| Publisher: | Atheros Communications, Inc. |
| Product name: | ACU |
| Description: | Atheros Client Utility |
| Typical file path: | C:\Program Files\atheros\acu.exe |
| Certificate |
| Issued to: | Atheros Communications Inc. |
| Authority (CA): | VeriSign |
| Expiration date: | Friday, January 4, 2013 |
Programs installed in
(Note, the programs listed below are for all versions of ACU.)
This is the driver installer for the Atheros wireless/bluetooth device installed in the computer.
This is the Atheros Client Utility for Windows XP. The Atheros Client Utility (ACU) is a user-mode utility designed to edit and add profiles, as well as display display diagnostics pertaining to the A...
This is the driver installer for the Atheros wireless/bluetooth device installed in the computer.
Behaviors
(Note, the behaviors below are for all versions of ACU.exe, select a unique version for details.)
Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
- 'ACU' → "C:\Program Files\Atheros\ACU.exe" -nogui
Malware detections
Based on 40+ industry antivirus scanners, 3 of them detected the following malware.
| Antivirus engine | Engine version | Detection | File version |
| Antiy Labs AVL |
2.0.3.7 |
Worm/Win32.Polip.gen |
4.1.0.132 |
| McAfee Gateway Anti-Malware |
v6.7.6-dat |
Win32.LooksLike.Virut |
7.0.1.70 |
| Sunbelt |
- |
Backdoor.Win32.S (vf) |
5.2.0.124 |
All file variations of ACU.exe
Distribution by Windows OS
| OS version | distribution |
| Microsoft Windows XP |
100.00% |
|
Distribution by country
Thailand installs about 16.67% of ACU.
Distribution by PC manufacturer
| PC Manufacturer | distribution |
| Toshiba |
40.00% |
|
| Dell |
40.00% |
|
| Acer |
20.00% |
|
