calc32.exe

Hex Workshop

BreakPoint Software, Inc.

Publisher:
BreakPoint Software, Inc.  (signed and verified)

Product:
Hex Workshop

Description:
Hex Workshop Calculator

Version:
6.0.1.4603

MD5:
6171838b6ecaf0e3fb56ec4df945ef42

SHA-1:
da48f5e4af6ff58077f3269c4745f353d736b089

SHA-256:
3b910ab0244fd48d6bd47a1ac0eef46354651a5a6c369c45d70bf4c7b2aab351

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/28/2024 4:11:18 PM UTC  (today)

Scan engine
Detection
Engine version

Zillya! Antivirus
Backdoor.Bifrose.Win32.62901
2.0.0.1974

File size:
200.7 KB (205,480 bytes)

Product version:
6.0.1.4603

Copyright:
版权所有 ©1995-2009 BreakPoint 软件公司。所有权利保留。

Original file name:
CALC.EXE

File type:
Executable application (Win32 EXE)

Language:
Chinese (Simplified, PRC)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\-²+¦¦a+¡+f+¦\calc32.exe

Digital Signature
Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
10/19/2007 5:00:00 AM

Valid to:
10/18/2009 4:59:59 AM

Subject:
CN="BreakPoint Software, Inc.", OU=SECURE APPLICATION DEVELOPMENT, O="BreakPoint Software, Inc.", L=Wayland, S=Massachusetts, C=US

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
333C4ACBC897F334E235FFB812152B20

File PE Metadata
Compilation timestamp:
1/4/2009 8:34:28 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

Entry address:
0x1084B

Entry point:
E8, B4, 8C, 00, 00, E9, 16, FE, FF, FF, 55, 8B, EC, FF, 75, 18, FF, 75, 14, FF, 75, 10, FF, 75, 0C, 6A, FF, FF, 75, 08, E8, 3C, 26, 00, 00, 83, C4, 18, 5D, C3, 55, 8B, EC, 51, 51, 53, 33, DB, 39, 5D, 08, 56, 57, 89, 5D, F8, 74, 7D, 8B, 4D, 0C, 3B, CB, 75, 07, 39, 5D, 10, 75, 71, EB, 05, 39, 5D, 10, 74, 6A, 39, 5D, 14, 75, 07, 39, 5D, 18, 75, 60, EB, 05, 39, 5D, 18, 74, 59, 39, 5D, 1C, 75, 07, 39, 5D, 20, 75, 4F, EB, 05, 39, 5D, 20, 74, 48, 39, 5D, 24, 75, 3E, 39, 5D, 28, 75, 3E, 8B, 75, 08, 33, C0, 40, 38...
 
[+]

Entropy:
6.3747

Code size:
132 KB (135,168 bytes)

Scan calc32.exe - Powered by Reason Core Security