home

OpenFinRVM.exe

RVM

OpenFin Inc.

Publisher:
OpenFin  (signed by OpenFin Inc.)

Product:
RVM

Description:
OpenFin RVM

Version:
0.0.2.9

MD5:
a2dcfabe92fdc15a4b07474937b1ed9f

SHA-1:
1786040a1b59c2e4c5a7042bcc6609d7ca3f3014

SHA-256:
1f43af8c5880f6137f04e24d57c42e91cecd166c56bb810607d6e78cc8c80a36

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
2/25/2025 1:06:51 PM UTC  (today)

File size:
1.9 MB (1,946,232 bytes)

Product version:
0.0.2.9

Copyright:
Copyright (C) 2014

Original file name:
OpenFinRVM.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\openfinrvm.exe

Digital Signature
Signed by:
OpenFin Inc.

Authority:
COMODO CA Limited

Valid from:
11/24/2014 7:00:00 PM

Valid to:
11/25/2015 6:59:59 PM

Subject:
CN=OpenFin Inc., OU=OpenFin Inc, O=OpenFin Inc., POBox=10007, STREET=86 Chambers St Ste 701, L=New York, S=NY, PostalCode=10007, C=US

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
4E3B91002539F59CAEEF5B5BFE74F5C2

File PE Metadata
Compilation timestamp:
12/1/2014 3:24:52 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
49152:R9Xmn2zvnBUzTCxxH74KSfbpNQHq9dBm:3XnnBUPCf4TfbpNQHq

Entry address:
0xD528D

Entry point:
E8, 62, 17, 01, 00, E9, 7F, FE, FF, FF, 55, 8B, EC, 83, EC, 10, FF, 75, 0C, 8D, 4D, F0, E8, 34, C1, FF, FF, 8B, 45, 08, 0F, B6, C8, 8B, 45, F0, 8B, 80, 90, 00, 00, 00, 0F, B7, 04, 48, 25, 00, 80, 00, 00, 80, 7D, FC, 00, 74, 07, 8B, 4D, F8, 83, 61, 70, FD, 8B, E5, 5D, C3, 55, 8B, EC, 6A, 00, FF, 75, 08, E8, B9, FF, FF, FF, 59, 59, 5D, C3, 55, 8B, EC, 6A, 04, FF, 75, 08, E8, 84, 12, 01, 00, 59, 59, 5D, C3, 55, 8B, EC, 68, 57, 01, 00, 00, FF, 75, 08, E8, 70, 12, 01, 00, 59, 59, 5D, C3, 55, 8B, EC, 6A, 08, FF...
 
[+]

Entropy:
6.6455

Code size:
1.1 MB (1,164,288 bytes)

Scan OpenFinRVM.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.