home

spmm.exe

NOVYE SISTEMY, OOO

Publisher:
NOVYE SISTEMY, OOO  (signed and verified)

MD5:
eb4730538f559a9766bf26bc41c954d2

SHA-1:
2d1e2a181d56c259da7ea08116b97886b46108b7

SHA-256:
decd1b28f03eb8420c5b9a445a4f52a0fdc1607053619a1ebbdea126d712e597

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/27/2024 6:37:49 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Floxif.H virus
6.3.12010.0

F-Prot
W32/Floxif.B
4.6.5.141

File size:
725.1 KB (742,487 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\ProgramData\{827d21cc-a22d-45d6-23ca-451ddac769ba}\spmm.exe

Digital Signature
Signed by:
NOVYE SISTEMY, OOO

Authority:
COMODO CA Limited

Valid from:
4/22/2016 1:00:00 AM

Valid to:
4/23/2017 12:59:59 AM

Subject:
CN="NOVYE SISTEMY, OOO", O="NOVYE SISTEMY, OOO", STREET="d.51 k.151, ul.Uritskogo", L=Kirov, S=Kirov, PostalCode=610002, C=RU

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
0090AF4563EB9BA71C218D13BE65D56D08

File PE Metadata
Compilation timestamp:
12/24/2015 12:09:56 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x1000

Entry point:
E9, 67, 97, 03, 00, E8, 01, 00, 00, 00, C3, C3, 3F, EE, 4A, 8A, 50, 6C, 69, D6, DC, F0, 3F, E0, A8, 78, AE, AF, 3D, E2, 01, 22, F3, B1, 1B, B2, B2, 85, B9, ED, 8E, 9A, 70, 4F, B9, FF, 9E, 0F, 21, 76, BC, 46, A6, 04, 3E, 0C, E3, 0F, 02, B8, 7A, AE, 0C, F8, 30, 08, 8D, E8, 88, FC, D1, A5, CD, 71, 2F, D2, AE, BF, 69, 4E, 79, DA, 70, D2, EB, 07, 4C, B8, C3, 19, 4A, 65, 04, 7C, 66, 76, 3A, D7, E6, 91, 03, B1, 53, D2, F1, 8D, 8D, 46, 07, 71, FD, 8C, 75, 83, 2A, 97, C7, 12, 6F, 57, 3E, 05, 3F, 17, 51, 11, 81, 8D...
 
[+]

Entropy:
7.8773

Packer / compiler:
Xtreme-Protector v1.05

Code size:
696.5 KB (713,216 bytes)

Scan spmm.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.