15_ti_rc6351_offline+product+name.exe

Meeting Center

Intercall, Inc.

Publisher:
Intercall, Inc.  (signed and verified)

Product:
Meeting Center

Description:
Meeting Center Installer Module

Version:
5,14,12,209

MD5:
284f0cccb2242378767b6c6846e884ff

SHA-1:
91d47b5d9768c0fcb6ce0854e981941811c06a98

SHA-256:
ce1377ed81b51cd8e20150040002d07eeab536259b2f35241e8aeb92e465f490

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 3:25:40 AM UTC  (today)

File size:
1.2 MB (1,232,152 bytes)

Product version:
5,14,12,209

Copyright:
© 2008-2014 InterCall, Inc.. All rights reserved.

Original file name:
npmcInstall.dll

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\15_ti_rc6351_offline+product+name.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
8/14/2014 8:00:00 PM

Valid to:
10/14/2015 7:59:59 PM

Subject:
CN="Intercall, Inc.", O="Intercall, Inc.", L=West Point, S=Georgia, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5873AC154CAE5692272563805CD92D9D

File PE Metadata
Compilation timestamp:
12/17/2014 6:03:49 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:E2DXA4XN6UFqVqG7f+CN83OPK/K9OddBkmT9poYKx3ct2h/1etFGLFQClgmxj:E2DAIFcN0S52dBtroYQk2h/1eWLFQClz

Entry address:
0x6EAAB

Entry point:
E8, D8, C8, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 54, A1, FC, 10, 4C, 00, 33, C5, 89, 45, FC, 53, 56, 57, 6A, 04, 58, E8, 6E, E6, FF, FF, 89, 65, F4, 6A, 1C, 8D, 45, D0, 50, FF, 75, F4, FF, 15, 38, 52, 49, 00, 85, C0, 0F, 84, A0, 00, 00, 00, 8B, 45, D4, 89, 45, F0, 8D, 45, AC, 50, FF, 15, 34, 52, 49, 00, 8B, 7D, B0, 68, 98, 56, 4A, 00, 33, F6, FF, 15, 48, 51, 49, 00, 3B, C6, 74, 26, 68, 80, 56, 4A, 00, 50, FF, 15, 44, 51, 49, 00, 3B, C6, 74, 16, 8D, 4D, F8, 51, 89, 75, F8, FF, D0, 59, 85...
 
[+]

Entropy:
6.1182

Code size:
589.5 KB (603,648 bytes)

The file 15_ti_rc6351_offline+product+name.exe has been seen being distributed by the following URL.

Scan 15_ti_rc6351_offline+product+name.exe - Powered by Reason Core Security