home

2bq55r4d

MIS Utilities

Publisher:
MIS Utilities  (signed and verified)

Version:
3.10.0.0

MD5:
6f18b6008d41d0aeda57d307d3ec5c6b

SHA-1:
5a67a090dff440f99f49cb93973ba7bac858c9d6

SHA-256:
c9e69d3b3203817b7428b83334af9a67ab3cdef0cd5c5fc21540a6e8f523e453

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 1:32:55 PM UTC  (today)

File size:
716.9 KB (734,152 bytes)

Product version:
3.10

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\2bq55p32\2bq55r4d

Digital Signature
Signed by:
MIS Utilities

Authority:
COMODO CA Limited

Valid from:
8/23/2011 3:00:00 AM

Valid to:
8/23/2012 2:59:59 AM

Subject:
CN=MIS Utilities, O=MIS Utilities, STREET=Kharkivske shose 51-104, L=Kyiv, S=Ukraine, PostalCode=02096, C=UA

Issuer:
CN=COMODO Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00D5BA627EA76EDA8E214214EE87B915D7

File PE Metadata
Compilation timestamp:
11/15/2011 8:47:33 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:abMWnEQEvrXHkS6FYFBy/DPasuI/HJWmQFVaia6dRfbj51tdakoC:IrEvrUTeFBy/DPa0/pWmQFVaildRff50

Entry address:
0x9791C

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, DC, 5E, 49, 00, E8, EF, F5, F6, FF, A1, 40, 9F, 49, 00, 8B, 00, 8B, 10, FF, 52, 34, 8B, 0D, B8, A1, 49, 00, A1, 40, 9F, 49, 00, 8B, 00, 8B, 15, C4, 3C, 49, 00, 8B, 18, FF, 53, 30, A1, 40, 9F, 49, 00, 8B, 00, 8B, 10, FF, 52, 38, 5B, E8, 75, D0, F6, FF, 90, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.5764

Developed / compiled with:
Microsoft Visual C++

Code size:
599.5 KB (613,888 bytes)

Scan 2bq55r4d - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.