SummerEmoticonPack arSA.exe

انطباعات عن الألعاب الصيفية

Microsoft Corporation

Publisher:
Microsoft  (signed by Microsoft Corporation)

Product:
انطباعات عن الألعاب الصيفية

Version:
2.8.5.04073.23205

MD5:
6409dbfe0b3f4b8d4268f95a6c8a988c

SHA-1:
dbf9495943bff6916a52bc9dc2cecf73619c8d75

SHA-256:
4da8e62483548eda9aba9e905c1b7d740d19320c2d5ee37d63bb8b1f3eaaf933

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
11/27/2024 7:48:14 AM UTC  (today)

File size:
1.1 MB (1,164,352 bytes)

Product version:
2.8.5.04073.23205

Copyright:
Copyright (C) Microsoft 2012

Original file name:
SummerEmoticonPack arSA.exe

File type:
Executable application (Win32 EXE)

Digital Signature
Authority:
Microsoft Corporation

Valid from:
10/10/2011 11:32:25 PM

Valid to:
1/10/2013 11:32:25 PM

Subject:
CN=Microsoft Corporation, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Code Signing PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
6119CC93000100000066

File PE Metadata
Compilation timestamp:
7/5/2012 9:32:06 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
24576:eqJzPrQeUpjTlmCOuvTaQ4mt9oLIESAxkAWuncJaha/TIO75+sfMRtziZwrS:VJzMjTlmCOuvTaQ4mt9oLIESAxkAWunW

Entry address:
0x113AFE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.3372

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
1.1 MB (1,121,280 bytes)

The file SummerEmoticonPack arSA.exe has been seen being distributed by the following URL.