lab test 3 (d)-cpp.exe

AxCrypt

Axantum Software AB

Publisher:
Axantum Software AB  (signed and verified)

Product:
AxCrypt

Description:
AxCrypt Self-Decrypter

Version:
1.7.2867.0

MD5:
537219f3bea7b7adb429cc62a65cb5d5

SHA-1:
a20d9a70992febd2d7387e532ccaf08cc55ca6c1

SHA-256:
518e206cbc5a4849c3ab3cde92f9ed56633541bf13cbb98d06fa7640a9fb953f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 8:28:41 PM UTC  (today)

File size:
230.6 KB (236,118 bytes)

Product version:
1.7.2867.0

Copyright:
Copyright © 2002-2011 Svante Seleborg

Trademarks:
All Rights Reserved

Original file name:
AxDecrypt.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\lab test 3 (d)-cpp.exe

Digital Signature
Authority:
The USERTRUST Network

Valid from:
1/28/2011 12:00:00 AM

Valid to:
1/28/2012 11:59:59 PM

Subject:
CN=Axantum Software AB, O=Axantum Software AB, STREET=Dalgangen 1, L=Jarfalla, S=Stockholm, PostalCode=SE-177 60, C=SE

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00A71566DFBF8D4105AE7EC74098424E38

File PE Metadata
Compilation timestamp:
12/4/2011 8:57:23 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:eLPcYi/U7p0pMW8yl96wsRlXU+r3dSxNvmqv47WTBROa5oe8BQqb:ezcxBw7WT/JWZb

Entry address:
0xD534

Entry point:
E8, 26, 1A, 00, 00, E9, 89, FE, FF, FF, 3B, 0D, 30, 22, 42, 00, 75, 02, F3, C3, E9, AD, 1A, 00, 00, 8B, FF, 55, 8B, EC, 68, 38, 63, 41, 00, FF, 15, 74, 60, 41, 00, 85, C0, 74, 15, 68, 28, 63, 41, 00, 50, FF, 15, 0C, 61, 41, 00, 85, C0, 74, 05, FF, 75, 08, FF, D0, 5D, C3, 8B, FF, 55, 8B, EC, FF, 75, 08, E8, C8, FF, FF, FF, 59, FF, 75, 08, FF, 15, 08, 61, 41, 00, CC, 6A, 08, E8, E3, 1C, 00, 00, 59, C3, 6A, 08, E8, 01, 1C, 00, 00, 59, C3, 8B, FF, 56, E8, 43, 13, 00, 00, 8B, F0, 56, E8, 1F, 05, 00, 00, 56, E8...
 
[+]

Entropy:
7.0062

Code size:
83 KB (84,992 bytes)

The file lab test 3 (d)-cpp.exe has been seen being distributed by the following URL.

Scan lab test 3 (d)-cpp.exe - Powered by Reason Core Security