home

certificate maker.exe

صانع الشهادات 4.0

Hazim07 برمجة

This is a setup program which is used to install the application. The file has been seen being downloaded from dc337.4shared.com and multiple other hosts.
Publisher:
Hazim07 برمجة

Product:
صانع الشهادات 4.0

Description:
برنامج عربي100% لصنع شهادات التقدير

Version:
4.00

MD5:
051c24180e70ac3a99fa2522d5b69250

SHA-1:
13c2fa74cbd4cf25888a5602da43820565e1918a

SHA-256:
9d25cbe03ce08853917d72ac2a277c0e0ecf18702ec55770ab1d4158e23b9a05

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 8:10:51 AM UTC  (today)

Scan engine
Detection
Engine version

Emsisoft Anti-Malware
Gen:Variant.Barys.441
8.14.03.24.05

File size:
4.7 MB (4,923,392 bytes)

Product version:
4.00

Original file name:
صانع الشهادات 4.0.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
5/9/2010 3:00:50 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:66Di9ZNwwfLZ2BK+HnaI1VfL6Qd0aINEtsIvFESfk5r29IZkrg9Zl14Akx/cwxk/:IZJfFfI1VfN0YzvFEgk5rJkrs14hc2j

Entry address:
0x36AC

Entry point:
68, FC, 56, 73, 00, E8, F0, FF, FF, FF, 00, 00, 48, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, BE, 40, B4, 2D, A7, 77, F3, 48, B8, DD, E5, 62, 84, C2, C0, 2F, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 2D, 43, 30, 30, 30, 2D, 50, 72, 6F, 6A, 65, 63, 74, 31, 00, 30, 34, 36, 7D, 23, 32, 2E, 00, 23, 30, 23, 43, 3A, 5C, 57, 00, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 01, 00, 00, 00, 33, 72, 26, 11, 30, D4, 71, 4B, BA, 54, F8, 34, BC, 47, 9B, C7, 01, 00, 00, 00, A0, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
3.8 MB (3,944,448 bytes)

The file certificate maker.exe has been seen being distributed by the following 2 URLs.

http://dc337.4shared.com/download/.../__40.exe

http://dc242.4shared.com/download/.../__40.exe

Scan certificate maker.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.