home

BIBLauncher.exe

Business-in-a-Box Launcher

BizTree Inc.

Publisher:
BizTree Inc.  (signed and verified)

Product:
Business-in-a-Box Launcher

Description:
Business-in-a-Box Launcher Application

Version:
1, 0, 0, 0

MD5:
876b702011be43bb43b6ed534d5b08e3

SHA-1:
a15216c9613fac5a6015147c2519d2fcaea96bad

SHA-256:
c0879b2e0f60bab19a4aee0365e8e70a18a96a99c376fed0e733c97f93afd86a

Scanner detections:
4 / 68

Status:
Inconclusive  (probably just false positive detections)

Analysis date:
12/27/2024 9:10:59 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Evo-gen [Susp]
160708-3

Clam AntiVirus
PUA.Packed.EXECryptor
0.98/17411

Kaspersky
Net-Worm.Win32.Kolab
14.0.0.-84

Quick Heal
(Suspicious) - DNAScan
7.16.11.00

File size:
421.2 KB (431,320 bytes)

Product version:
1, 0, 0, 0

Copyright:
Copyright (C) 2007

Original file name:
BIBLauncher.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:
BizTree Inc.

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
5/9/2007 8:00:00 AM

Valid to:
5/9/2008 7:59:59 AM

Subject:
CN=BizTree Inc., OU=Envision SBS, O=BizTree Inc., L=Montreal, S=Quebec, C=CA

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
493018FF5A39ABF5B1BE4DD5ED53FDDD

File PE Metadata
Compilation timestamp:
3/25/2008 2:09:21 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:qIFjMS9ytMUs7/AkWa6JbUWbKbn+b0JkYNcOw:qINM2ytXsT55FWUn+zL

Entry address:
0x106321

Entry point:
E8, 3B, FF, FF, FF, 05, 78, 22, 00, 00, FF, E0, E8, 2F, FF, FF, FF, 05, 4D, 5F, 00, 00, FF, E0, E8, 04, 00, 00, 00, FF, FF, FF, FF, 5E, C3, 00, 72, CC, F6, F6, F3, 72, 57, F6, 41, 98, AF, 63, B6, DC, F8, 98, E0, AE, 5D, 17, AA, 88, 25, 28, 78, 6E, A8, D6, F4, D8, A9, C2, 45, D6, DB, 8A, F9, E8, 20, 92, C2, 3E, 8C, 75, DA, 5F, A3, 22, E0, 6E, C4, 9C, C3, D5, 56, 50, E7, 75, 19, 5C, FC, 80, 02, 7C, 3C, 9C, E6, D0, 3F, A6, 01, FE, AC, 61, E6, 97, CF, 10, F5, 8E, 0C, 2F, D3, 9B, 2E, 70, A5, 6D, 02, 18, 97, 95...
 
[+]

Entropy:
7.9672  (probably packed)

Code size:
272 KB (278,528 bytes)

Scan BIBLauncher.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.