» nts3a36.tmp.p2p
Overview
Analysis
File Details

nts3a36.tmp.p2p

Omnipotent input software

File name:

nts3a36.tmp.p2p

Publisher:

Omnipotent input software (signed and verified)

MD5:

4dc0298f72971aca86057b7ce7bb9d48

SHA-1:

8880445148387920adc918fbdc923131c253874f

SHA-256:

de275f1acf91fe21d4f298e4d03dc1cdfd9eb68e5a3181a8469706ea444ff9f6

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

2/26/2025 11:10:46 AM UTC (today)

File size:

21.8 MB (22,869,328 bytes)

Common path:

C:\users\{user}\appdata\roaming\360safe\netmon\stdlcache\nts3a36.tmp.p2p

Digital Signature

Signed by:

Omnipotent input software

Authority:

VeriSign, Inc.

Valid from:

11/3/2014 8:00:00 AM

Valid to:

10/31/2017 7:59:59 AM

Subject:

CN=Omnipotent input software, OU=IT, O=Omnipotent input software, L=Shanghai, S=Shanghai, C=CN

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

56594CF2A787CAD764EABF02A919E883

File PE Metadata

Compilation timestamp:

11/14/2014 9:58:19 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

393216:keYa2N6sRmNoHU0aE/BF2hJrPIllsen1U9H8fKFI0rg5XvyXZFrhwTkP:kVa92mNN/M2hJOlfn1U9HiILr0IOM

Entry address:

0x1C984

Entry point:

A4, 80, 66, ED, A1, F2, D2, 7D, 03, 85, E8, 53, DB, 5F, D9, 5D, E0, E1, 70, 1E, 58, AB, E4, 78, 38, E1, 65, D2, 08, 46, 76, E0, BF, A9, 53, 43, FA, 56, 79, F6, 48, C0, 2C, D1, 18, E6, 72, 37, BD, 6B, EB, 5A, 7B, 2D, 8F, 60, FE, AE, 83, 9B, 3E, A3, 31, 1C, D1, 30, 07, 93, DC, 15, 32, 73, C4, 40, DC, D9, 9D, E0, DA, 77, 22, 75, 86, D3, FB, AC, 46, 32, 90, 40, 94, A5, 23, 1A, 69, 5E, FD, 5C, 5A, 7D, 4F, C8, A0, 02, E6, D4, 19, EC, E2, EE, 15, D1, 70, 41, 1C, A3, A3, AF, F8, 60, A1, 11, CE, CA, F0, CF, 7F, A5... 
[+]

Entropy:

7.9975 (probably packed)

Code size:

728 KB (745,472 bytes)

Scan nts3a36.tmp.p2p - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.