proxpn_upgrader.exe

proXPN Direct, LLC

Publisher:
proXPN Direct, LLC  (signed and verified)

MD5:
520ed7d70dd7b6f691214770985ae82b

SHA-1:
230978696a1cd0906b364e79c7360667bfca7f9d

SHA-256:
0326139980f84c7172715a2d79c68e0770fd8ec89962bef4c62111f4bda8dafa

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/25/2024 11:44:30 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
3.12.26.4

File size:
182 KB (186,408 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\proxpn\bin\proxpn_upgrader.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
3/12/2010 5:16:57 AM

Valid to:
3/13/2011 5:16:51 AM

Subject:
CN="proXPN Direct, LLC", O="proXPN Direct, LLC", L=Winter Springs, S=FL / Seminole, C=US

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000012750891A64

File PE Metadata
Compilation timestamp:
7/8/2010 4:07:55 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
8.0

CTPH (ssdeep):
3072:3eaRvMTXqrZNK6/Qb4eoVNq9TIVwj2jfz4t5oZ:3eCv5ZNK6O41VN9w6rYoZ

Entry address:
0xD406

Entry point:
E8, 53, 65, 00, 00, E9, 40, FE, FF, FF, 55, 8B, EC, 83, EC, 20, 53, 33, DB, 39, 5D, 14, 75, 20, E8, F4, 1E, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, C8, 53, 00, 00, 83, C4, 14, 83, C8, FF, E9, 99, 00, 00, 00, 56, 8B, 75, 0C, 57, 8B, 7D, 10, 3B, FB, 74, 21, 3B, F3, 75, 1D, E8, C4, 1E, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, 98, 53, 00, 00, 83, C4, 14, 83, C8, FF, EB, 6A, B8, FF, FF, FF, 7F, 3B, F8, 89, 45, E4, 77, 03, 89, 7D, E4, FF, 75, 1C, 8D, 45, E0, FF, 75, 18, C7, 45, EC...
 
[+]

Entropy:
6.3526

Code size:
128 KB (131,072 bytes)

Scan proxpn_upgrader.exe - Powered by Reason Core Security