Should I block it?
Yes, 98% block recommendation.
Possible reasons:
Multiple malware detections
Performance resource utilization
Additional versions
Relationships
latestdlmgr.exe
OpenCandy recommendation downloader by OpenCandy Inc. (Signed)
| Version: | 3.2.5.247 |
| MD5: | fd468eb0dc155ea5ba65c7bd632a03fc |
| SHA1: | f57ed6018ee6e814bd8c8eea74039aa6aec709eb |
| SHA256: | 228374847c58007ef4f2b6dbda86020c2a90dcb8bd1504cf4687c908c302bb2f |
Warning 4 antivirus scanners has detected malware.
Overview
latestdlmgr.exe is malware that executes as a process with the local user's privileges. The file is digitally signed by OpenCandy Inc. which was issued by the VeriSign certificate authority (CA).
Details
| File name: | latestdlmgr.exe |
| Publisher: | OpenCandy |
| Product name: | OpenCandy recommendation downloader |
| Description: | OpenCandy recommendation downloader p44 |
| Typical file path: | C:\users\user\appdata\roaming\opencandy\opencandy_ad17d7aac86e4ef4aea56b8dc9947cc3\latestdlmgr.exe |
| Original name: | OpenCandyU1Dlm.exe |
| File version: | 3.2.5.247 |
| Size: | 295.79 KB (302,888 bytes) |
| Build date: | 3/2/2013 7:13 AM |
| Certificate |
| Issued to: | OpenCandy Inc. |
| Authority (CA): | VeriSign |
| Effective date: | Tuesday, January 25, 2011 |
| Expiration date: | Saturday, March 15, 2014 |
| Digital DNA |
| PE subsystem: | Windows GUI |
| File packed: | Yes |
| .NET CLR: | No |
More details
Malware detections
Based on 40+ industry antivirus scanners, 4 of them detected the following malware.
| Antivirus engine | Engine version | Detection |
| Antiy Labs AVL |
2.0.3.7 |
Trojan/Win32.Patched |
| ESET NOD32 |
7.8873 |
Win32/OpenCandy |
| Malwarebytes |
1.75.0.1 |
PUP.Optional.OpenCandy.A |
| Trend Micro HouseCall |
9.700.0.1001 |
TROJ_GEN.F47V0515 |
Resource utilization
(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
| CPU |
| Total CPU: | 0.00292352% | |
| Kernel CPU: | 0.00163845% | |
| User CPU: | 0.00128506% | |
| Kernel CPU time: | 27,144,174 ms/min | |
| CPU cycles: | 137,373/sec | |
| Memory |
| Private memory: | 3.83 MB | |
| Private (maximum): | 9.27 MB | |
| Private (minimum): | 9 MB | |
| Non-paged memory: | 3.83 MB | |
| Virtual memory: | 77.81 MB | |
| Virtual memory (peak): | 93.88 MB | |
| Working set: | 9.16 MB | |
| Working set (peak): | 9.54 MB | |
| Page faults: | 2,700/min | |
| I/O |
| I/O read transfer: | 2.47 KB/sec | |
| I/O read operations: | 1/sec | |
| I/O write transfer: | 1.33 KB/sec | |
| I/O write operations: | 1/sec | |
| I/O other transfer: | 9.93 KB/sec | |
| I/O other operations: | 635/sec | |
| Resource allocations |
| Threads: | 4 | |
| Handles: | 169 | |
| GUI GDI count: | 31 | |
| GUI GDI peak: | 38 | |
| GUI USER count: | 19 | |
| GUI USER peak: | 24 | |
Process properties
| Integrety level: | High |
| Platform: | 32-bit |
| Command line: | "C:\users\user\appdata\roaming\opencandy\opencandy_ad17d7aac86e4ef4aea56b8dc9947cc3\latestdlmgr.exe" /d76e8a95-f14f-4c17-bf3e-61d5757838bc /procid=2136 /randomwindowclassname=9a42bed427c44c178113bda25f1b5aa7 ocdummy /candyrx5879 /nocandy /ocphttC://cdn.opencandy.com/p/812/pins/passwordboxchstore_p1v0.exe /passive /ocs914400 /ocmd5c49cb4edab128f3e0e245ff27df3e83b |
| Owner: | User |
Distribution by Windows OS
| OS version | distribution |
| Windows Vista Home Basic |
50.00% |
|
| Windows 7 Ultimate |
50.00% |
|
Distribution by country
Spain installs about 50.00% of OpenCandy recommendation downloader.
Distribution by PC manufacturer
| PC Manufacturer | distribution |
| Lenovo |
66.67% |
|
| Hewlett-Packard |
33.33% |
|
