home

drev320wd.exe

DRevitalize

Piotr Ułaszewski

Publisher:
Piotr Ulaszewski  (signed by Piotr Ułaszewski)

Product:
DRevitalize

Description:
DRevitalize 3.20

Version:
1, 0, 0, 0

MD5:
41c5005c9335b010a598dc8d1898043b

SHA-1:
4072af1254041a08b7cfa5538d2318950db0c250

SHA-256:
9ccf6a34cce94840d2894787edb462b0b91bb5d750cd10a1072f2d484254e893

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
1/1/2025 4:07:04 AM UTC  (today)

File size:
553.3 KB (566,568 bytes)

Product version:
3, 2, 0, 0

Copyright:
(c) Piotr Ulaszewski 2004-2016

Original file name:
Drev320w.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\drevitalize 3.20 demo\drev320wd.exe

Digital Signature
Signed by:
Piotr Ułaszewski

Authority:
COMODO CA Limited

Valid from:
12/31/2015 3:00:00 AM

Valid to:
12/31/2016 2:59:59 AM

Subject:
CN=Piotr Ułaszewski, O=Piotr Ułaszewski, STREET=Agrestowa 11, L=Suchy Dwór, S=Dolnośląskie, PostalCode=52-271, C=PL

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
008EDC28755CAAE41FA19435513A5036CE

File PE Metadata
Compilation timestamp:
6/3/2016 1:57:34 AM

OS version:
1.11

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.18

CTPH (ssdeep):
3072:02zbO5FoG1O8H5AVZvPHqDWJbjjeZYuw2aJ2/atAdjAPLJC73KX9DMzNNqtrzAvc:0T1O8H5AHHHXdCbUm5J133HZs

Entry address:
0x35AB2

Entry point:
E9, 79, 1B, 00, 00, 03, 10, 40, 00, 4F, 70, 65, 6E, 20, 57, 61, 74, 63, 6F, 6D, 20, 43, 2F, 43, 2B, 2B, 33, 32, 20, 52, 75, 6E, 2D, 54, 69, 6D, 65, 20, 73, 79, 73, 74, 65, 6D, 2E, 20, 50, 6F, 72, 74, 69, 6F, 6E, 73, 20, 43, 6F, 70, 79, 72, 69, 67, 68, 74, 20, 28, 43, 29, 20, 53, 79, 62, 61, 73, 65, 2C, 20, 49, 6E, 63, 2E, 20, 31, 39, 38, 38, 2D, 32, 30, 30, 32, 2E, 00, 00, C3, C3, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 51, 56, 57, 83, EC, 08, 89, C6, 89, D7, 31, D2, 89, C1, 40, 80, 39, 00...
 
[+]

Entropy:
5.6139

Packer / compiler:
Xtreme-Protector v1.05

Code size:
244.5 KB (250,368 bytes)

Scan drev320wd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.