» kbdins.exe
Overview
Analysis
File Details

kbdins.exe

Educational Testing Service

File name:

kbdins.exe

Publisher:

Educational Testing Service (signed and verified)

MD5:

bbf4248e8bdad6028da87f364a7bd4f9

SHA-1:

933aecec9ce931ce04bdc2f81b6dca43b02e1e6e

SHA-256:

3ea071d135e18e1df2ecd77576fccd418bf329d57f9619c12cb6e7e717df0f87

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

12/27/2024 12:03:08 PM UTC (today)

File size:

57.4 KB (58,744 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\kbdins.exe

Digital Signature

Signed by:

Educational Testing Service

Authority:

VeriSign, Inc.

Valid from:

11/29/2009 6:00:00 PM

Valid to:

11/25/2012 5:59:59 PM

Subject:

CN=Educational Testing Service, OU=Software Engineering, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Educational Testing Service, L=Princeton, S=New Jersey, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

00FFE0E6414193620E3956435E33952E

File PE Metadata

Compilation timestamp:

6/24/2011 10:30:33 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

10.0

CTPH (ssdeep):

768:cgv2nkrmEtjWGl4kmqkjTOsfKCh6UvVMsDbsn2/EDL3VmNyTMxLW0VqLbCiN:cA25Gp2pqqTOsfKe6US8ehrua7nCI

Entry address:

0x2966

Entry point:

E8, 84, 36, 00, 00, E9, 95, FE, FF, FF, B8, 18, C0, 40, 00, C3, A1, 00, F0, 40, 00, 56, 6A, 14, 5E, 85, C0, 75, 07, B8, 00, 02, 00, 00, EB, 06, 3B, C6, 7D, 07, 8B, C6, A3, 00, F0, 40, 00, 6A, 04, 50, E8, 32, 37, 00, 00, 59, 59, A3, E8, DF, 40, 00, 85, C0, 75, 1E, 6A, 04, 56, 89, 35, 00, F0, 40, 00, E8, 19, 37, 00, 00, 59, 59, A3, E8, DF, 40, 00, 85, C0, 75, 05, 6A, 1A, 58, 5E, C3, 33, D2, B9, 18, C0, 40, 00, EB, 05, A1, E8, DF, 40, 00, 89, 0C, 02, 83, C1, 20, 83, C2, 04, 81, F9, 98, C2, 40, 00, 7C, EA, 6A... 
[+]

Entropy:

6.3200

Code size:

32 KB (32,768 bytes)

Scan kbdins.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.