edfvgbn.exe

OpenVPN Technologies, Inc.

Publisher:
OpenVPN Technologies, Inc.  (signed and verified)

Version:
15.0.0.152

MD5:
04a1f05eb7bcde50902d70762e05905b

SHA-1:
d64287461b3daf3239de97d18930e20cb6fc1c0a

SHA-256:
5bfbead6ed0589bdac8d8a5c4c74121d85cdd8f3e926ee62eb9e591785491aae

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/25/2024 3:30:04 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
MSIL/Kryptik.GGN trojan
6.3.12010.0

File size:
571.6 KB (585,344 bytes)

Product version:
15.0.0.152

Original file name:
AAz.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\edfvgbn.exe

Digital Signature
Authority:
DigiCert Inc

Valid from:
10/22/2013 8:00:01 AM

Valid to:
9/2/2016 8:00:00 AM

Subject:
CN="OpenVPN Technologies, Inc.", O="OpenVPN Technologies, Inc.", L=Pleasanton, S=California, C=US

Issuer:
CN=DigiCert SHA2 Assured ID Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0605823F3E8F0AD9C012646C9E834F38

File PE Metadata
Compilation timestamp:
8/17/2016 8:37:09 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:Wp9uY9UofyF4BbExWUz5ZKD4LfrfGd4EV8wel:QBBqWUz5ZTL2zVhel

Entry address:
0x33A5E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
4.3112

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
199 KB (203,776 bytes)

Scan edfvgbn.exe - Powered by Reason Core Security