home

CTIDataLoader.exe

CTIDataLoader

Creative Technology of Sarasota Inc.

Publisher:
Creative Technology of Sarasota, Inc.  (signed by Creative Technology of Sarasota Inc.)

Product:
CTIDataLoader

Version:
1.00

MD5:
e49c78ce2eb7db3dbe28098cab45f3a5

SHA-1:
841e47616a7c99fc4032ec0372cc7c012abb3959

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 7:30:36 PM UTC  (today)

File size:
67.4 KB (68,968 bytes)

Product version:
1.00

Original file name:
CTIDataLoader.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Documents and Settings\{user}\My documents\downloads\ctidataloader.exe

Digital Signature
Signed by:
Creative Technology of Sarasota Inc.

Authority:
COMODO CA Limited

Valid from:
11/1/2011 12:00:00 AM

Valid to:
10/31/2012 11:59:59 PM

Subject:
CN=Creative Technology of Sarasota Inc., O=Creative Technology of Sarasota Inc., STREET=5959 Palmer Blvd, L=Sarasota, S=FL, PostalCode=34232, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
3251D33169631953BD07C96ADE8B9018

File PE Metadata
Compilation timestamp:
3/27/2012 1:45:55 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
768:6Kg4Dj5HDR9olC7F/q9EHOrpOTn9Mn6Kh2v:7NDjJRuZEuFO/KhG

Entry address:
0x1810

Entry point:
68, 4C, 2D, 40, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, B6, 60, 61, 93, 8E, D2, C9, 4D, BA, 53, B7, E5, 80, 10, E3, 40, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 43, 54, 49, 44, 61, 74, 61, 4C, 6F, 61, 64, 65, 72, 00, 00, 00, 00, 00, 00, 00, FF, CC, 31, 00, 09, E1, A0, 0A, 99, 46, 00, F2, 4F, A4, F9, 14, 4C, 82, 92, 7F, A9, 12, C0, 82, 8D, A8, E7, 82, 42, BF, FB, 62, F9, 15, 62, 7D, FD, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00...
 
[+]

Entropy:
4.9590

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
48 KB (49,152 bytes)

The file CTIDataLoader.exe has been seen being distributed by the following URL.

http://ctimls.com/.../ctiDataLoader.exe

Scan CTIDataLoader.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.