home

overlay.exe

suite_overlay_phase1

Verifone, Inc.

Publisher:
Verifone, Inc.  (signed and verified)

Product:
suite_overlay_phase1

Version:
2.00

MD5:
a11c5cf34e02ea9de8165af2ba6c990f

SHA-1:
8e2b92a3e8b3f69c23076722f0bf06f4822758bb

SHA-256:
bdfb64f54b715419baaa0e9ea923f871a9125f0640fb64e5565f88de65e8d553

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 6:42:56 AM UTC  (today)

File size:
41.6 KB (42,616 bytes)

Product version:
2.00

Original file name:
overlay.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\overlay.exe

Digital Signature
Signed by:
Verifone, Inc.

Authority:
GlobalSign nv-sa

Valid from:
3/6/2012 1:02:48 PM

Valid to:
3/7/2014 1:02:48 PM

Subject:
E=Tom_T1@verifone.com, CN="Verifone, Inc.", O="Verifone, Inc.", L=Clearwater, S=FL, C=US

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
112184D7B6AF6CB34BCDDD953B225068CF55

File PE Metadata
Compilation timestamp:
10/3/2012 1:54:42 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
768:/ayLA52hJn5XMI7SyCLvGCwnYwg4+IEk6:/aD5mxSiO7R2YwD+bk6

Entry address:
0x14C0

Entry point:
68, B0, 15, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 48, 00, 00, 00, 00, 00, 00, 00, 53, 3C, C7, 68, 71, F1, 8C, 4B, BC, EB, D6, 6E, 0B, A8, 7D, E9, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 2D, 43, 30, 30, 30, 2D, 73, 75, 69, 74, 65, 5F, 6F, 76, 65, 72, 6C, 61, 79, 5F, 70, 68, 61, 73, 65, 31, 00, 3A, 5C, 57, 00, 00, 00, 00, 07, 00, 00, 00, F4, 1B, 40, 00, 07, 00, 00, 00, A8, 1B, 40, 00, 07, 00, 00, 00, 50, 1B, 40, 00, 07, 00, 00, 00, 04, 1B, 40, 00, 07, 00, 00, 00, C4, 1A, 40, 00...
 
[+]

Entropy:
4.9300

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
24 KB (24,576 bytes)

Scan overlay.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.