rmt.trb

Trojan Remover

Simply Super Software

Publisher:
Simply Super Software  (signed and verified)

Product:
Trojan Remover

Version:
6.3.0.2299

MD5:
a1a555786f3c0fda51f55add92f14da4

SHA-1:
f48826010bc1265508ebf01d57ecdcf4106678f5

SHA-256:
4b307df85833880ffd74cc31a1a6639dd0934bec60f487278d2fbc1c37af2999

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 7:19:57 PM UTC  (today)

File size:
1.5 MB (1,537,144 bytes)

Product version:
6.3.0

Copyright:
Copyright © 1999-2004 Simply Super Software

Original file name:
RMVTRJAN.EXE

Language:
English (United States)

Common path:
C:\Windows\System32\rmt.trb

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
8/10/2004 5:30:00 AM

Valid to:
8/11/2005 5:29:59 AM

Subject:
CN=Simply Super Software, OU=none, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Simply Super Software, L=Nuneaton, S=Warwickshire, C=GB

Issuer:
CN=VeriSign Class 3 Code Signing 2001 CA, OU=Terms of use at https://www.verisign.com/rpa (c)01, OU=VeriSign Trust Network, O="VeriSign, Inc."

Serial number:
2387ADD97CB0E8B8A2AAEAF3A1C00C8F

File PE Metadata
Compilation timestamp:
6/20/1992 3:52:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
83.82

CTPH (ssdeep):
24576:z8SP/enw0Z3Mdp+ldVGAailOI+O4ELwzgSItun4irXuDLTNjzelpA1MSwgqDmzXc:z8SXgZ3cwdVGAvOI+OR1En4iLunNnel1

Entry address:
0x29ED60

Entry point:
55, 8B, EC, 6A, FF, 68, 90, 9A, 6B, 00, 68, 38, EA, 69, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, 78, 41, 6B, 00, 33, D2, 8A, D4, 89, 15, CC, AB, 6B, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, C8, AB, 6B, 00, C1, E1, 08, 03, CA, 89, 0D, C4, AB, 6B, 00, C1, E8, 10, A3, C0, AB, 6B, 00, 33, F6, 56, E8, 6B, 16, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, 36, 13, 00, 00, FF, 15, 74, 40, 6B, 00, A3, C4, C1, 6B, 00, E8...
 
[+]

Entropy:
7.6424

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
244 KB (249,856 bytes)

Scan rmt.trb - Powered by Reason Core Security