home

konsola.exe

Konsola

MM Studio

Publisher:
MM Studio  (signed and verified)

Product:
Konsola

Version:
1.33

MD5:
6ee74978d9b4f251d07b51b56a8136d0

SHA-1:
ee2a02b91061af3f35dfb1c8c3b2ad534f6e27ad

SHA-256:
8d230e2e81a26c606b815f149bb2db89446dd7bac6da8b00bf343c2b962f4bd8

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/23/2024 7:11:42 PM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
probably BACKDOOR.Trojan
9.0.1.05190

File size:
5.5 MB (5,797,704 bytes)

Product version:
1.33

Copyright:
MM Studio

Trademarks:
MM Studio

Original file name:
konsola.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\wincmd\konsola.exe

Digital Signature
Signed by:
MM Studio

Authority:
Unizeto Technologies S.A.

Valid from:
7/19/2012 11:39:22 AM

Valid to:
7/19/2013 11:39:22 AM

Subject:
E=biuro@mmstudio.pl, CN=MM Studio Maciej Piwko, OU=Swidnik, O=MM Studio, C=PL

Issuer:
CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
74739A3F95298D2A4A25F5DB59F61E9D

File PE Metadata
Compilation timestamp:
9/5/2012 11:24:04 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:E0ZPkhg5M8UJJn+4cmymG648isDF/nLBsJrqhERRsOPbkIkwVB:Eo6+4cmymG648isDF/nLBsJrqhERRsOh

Entry address:
0xE518

Entry point:
68, 48, EE, 40, 00, E8, F0, FF, FF, FF, 00, 00, 48, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 3E, 92, BA, 86, C4, 6B, C0, 45, B7, 74, 82, BF, 95, F6, BF, 5F, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 49, 00, 06, 58, A3, 02, 49, 6E, 77, 69, 67, 69, 6C, 61, 74, 6F, 72, 00, E4, 21, C3, 04, 00, 00, 00, 00, F8, E5, FF, 00, B8, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 34, 00, 00, 00, E3, 3B, 87, 96, B4, 65, FA, 4B, AE, 89, A7, 1A, CE, C3, 6C, 2B, 01, 00, 00, 00, 98, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
5.5 MB (5,771,264 bytes)

Windows Firewall Allowed Program
Name:
konsola


Scan konsola.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.