cm normandy.exe

Battlefront.com, Inc.

It runs as a scheduled task under the Windows Task Scheduler.
Publisher:
Battlefront.com, Inc.  (signed and verified)

MD5:
1575c5404b6a5df8c8846b8edea49109

SHA-1:
098aa74a7f9c687b11ebffb5c27de787e56046d1

SHA-256:
ad4347f1eeabd6e8adbd24557ca085e1e680204968bf002de2c60e16cde4ac31

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 7:58:31 PM UTC  (today)

File size:
20.7 MB (21,719,112 bytes)

File type:
Executable application (Win32 EXE)

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
2/4/2014 9:24:58 PM

Valid to:
3/24/2017 3:38:20 PM

Subject:
E=sales@battlefront.com, CN="Battlefront.com, Inc.", O="Battlefront.com, Inc.", L=Dover-Foxcroft, S=Maine, C=US

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
112103C72B832718E84ADC8FA0DD16B64327

File PE Metadata
Compilation timestamp:
10/27/2014 4:31:49 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
196608:FES+SHTmkp9e7/VAICZKlFbxgFytoSJZl6qJjbo3ZloKAXwz2GaSaTkokBiB:+8mk7ieLqfgeV6qJvoXoKEtGaJB

Entry address:
0x2724

Entry point:
31, C0, E9, B9, FF, FF, FF, C3, 00, 18, EB, 2F, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 03, 00, 03, 00, 00, 00, 28, 00, 00, 80, 0E, 00, 00, 00, 75, 18, 02, 80, 18, 00, 00, 00, 97, 19, 02, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 0F, 00, 01, 00, 00, 00, B0, 00, 00, 80, 02, 00, 00, 00, 47, 42, 00, 80, 03, 00, 00, 00, D7, 48, 00, 80, 04, 00, 00, 00, E7, 4B, 00, 80, 05, 00, 00, 00, F7, 4D, 00, 80, 06, 00, 00, 00, 47, 4F, 00, 80, 07, 00, 00, 00, 05, F2, 00, 80, 08, 00, 00, 00...
 
[+]

Entropy:
7.3853

Scheduled Task
Task name:
{39AE5C36-8EAF-4D90-BCCC-41B0A81E3D4A}

Trigger:
Registration (Runs on registration)


Scan cm normandy.exe - Powered by Reason Core Security