klimagegrab.exe

Serhiy Horobets

Publisher:
Serhiy Horobets  (signed and verified)

MD5:
61ea42bbf086dd388c40aaab41b02034

SHA-1:
b64b049850fea22e4745f3f3c0b878de0f494289

SHA-256:
ce0d64d9bad52d0bea738a536e55eb4330ffcd3215b849921190bb9aa0cd155f

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/5/2024 3:37:12 PM UTC  (today)

Scan engine
Detection
Engine version

Clam AntiVirus
PUA.Packed.EXECryptor
0.98/18011

Quick Heal
(Suspicious) - DNAScan
1.14.11.00

File size:
835.1 KB (855,112 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\burning suite krylack\klimagegrab.exe

Digital Signature
Signed by:

Authority:
The USERTRUST Network

Valid from:
10/29/2006 5:00:00 PM

Valid to:
10/30/2007 4:59:59 PM

Subject:
CN=Serhiy Horobets, O=Serhiy Horobets, STREET="Sechenova st, 7a - 38", L=Kiev, S=Goloseevsky rn, PostalCode=03127, C=UA

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
76C51EFDF4FC19D25A457F024431DA71

File PE Metadata
Compilation timestamp:
4/27/2007 7:34:13 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
24576:vQ9O2iHRJHJXPzE7fSgOQZ3EF8RCPqn59Z:vVxFJ/i1NKFDPqnd

Entry address:
0x1E2199

Entry point:
E8, 3B, FF, FF, FF, 05, FA, 08, 00, 00, FF, E0, E8, 2F, FF, FF, FF, 05, E1, 00, 00, 00, FF, E0, E8, 04, 00, 00, 00, FF, FF, FF, FF, 5E, C3, 00, BB, 95, C9, F3, 99, BD, 7A, EE, 3F, BC, DE, F7, E9, A5, F5, 82, 3F, 6D, AA, 02, E3, 45, 2B, 6B, 98, 96, 67, 71, 18, E4, AF, 8E, 8F, B5, 27, 82, B4, 25, FE, 8A, F6, 7D, 9C, 43, 3B, 6A, EC, AA, 14, 92, 30, 33, E2, 8A, 5A, D2, 5F, 9A, 69, 06, 8B, EF, A7, 92, 46, 3E, 31, 06, 41, EF, AC, F3, FF, FB, 2A, 82, 33, 09, 00, E5, E1, F0, BB, D5, 1F, 36, F0, FA, A5, BA, 51, 33...
 
[+]

Entropy:
7.8040  (probably packed)

Code size:
272 KB (278,528 bytes)

The file klimagegrab.exe has been discovered within the following program.

KRyLack Burning Suite  by KRyLack Software
Publisher's description - “KRyLack Burning Suite is a freeware application for all your CD, DVD, Blu-Ray, HD DVD burning needs. It lets you burn Data DVDs, HD-DVDs and Blu-ray Discs, create audio and data CDs, Video DVD.”
www.krylack.com/cd-dvd-blu-ray-hd-dvd-burning-suite
9% remove it
 
Powered by Should I Remove It?

Scan klimagegrab.exe - Powered by Reason Core Security