fltw.exe

WtFilterServ

Zimin Sergei Aleksandrovich IP

Publisher:
Zimin Sergei Aleksandrovich IP  (signed and verified)

Product:
WtFilterServ

Version:
3.1.0.0

MD5:
4a006c8dd8fdee5e4507eba0865ce0a1

SHA-1:
5efef9f0327247db13161090d83544a067e60bdc

SHA-256:
cd3d6ba92b65dc78558001d6d31a89a183fe919edf4b702d506f0217eae18cab

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/25/2024 6:15:33 PM UTC  (today)

Scan engine
Detection
Engine version

VIPRE Antivirus
Trojan.Win32.Packer.EnigmaProtector1.1X-1.3X
44868

File size:
2.4 MB (2,533,872 bytes)

Product version:
3.1.0.0

File type:
Executable application (Win32 EXE)

Language:
Russian (Russia)

Common path:
C:\windows\syswow64\fltw.exe

Digital Signature
Authority:
Symantec Corporation

Valid from:
5/20/2015 4:00:00 AM

Valid to:
5/20/2017 3:59:59 AM

Subject:
CN=Zimin Sergei Aleksandrovich IP, O=Zimin Sergei Aleksandrovich IP, L=Murom, S=Vladimir rgn., C=RU

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
24B85168F1A2FE0B6F5B1631144D74E7

File PE Metadata
Compilation timestamp:
8/22/2015 12:24:31 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x4CC35

Entry point:
55, 8B, EC, 83, C4, F0, B8, 00, 10, 40, 00, E8, 01, 00, 00, 00, 9A, 83, C4, 10, 8B, E5, 5D, E9, BB, 79, 96, 00, 47, 1C, 47, 42, 5A, C9, 76, 8F, 6B, 7C, F5, C2, 38, 47, 34, 50, DC, C0, 4C, F1, 04, 20, 88, 7A, AB, 0F, 48, 03, E8, CD, EC, 36, 9A, 99, 2A, 55, A0, 38, 03, F2, 33, FB, 2B, 03, 17, 45, DF, AD, 07, 59, 8A, 6E, 43, 5F, 50, FE, 97, E0, A6, AC, 6A, 72, 78, 23, A4, 83, 8F, 6C, 32, E9, 71, 75, 6A, 64, E6, BF, F2, 3B, 26, CC, DE, F2, 40, 03, 10, CA, 87, E7, 20, 5C, 8A, E9, 23, 83, A0, C3, 54, 07, 5F, FC...
 
[+]

Entropy:
7.9815

Developed / compiled with:
Microsoft Visual C++

Code size:
1 MB (1,097,728 bytes)

Scan fltw.exe - Powered by Reason Core Security