home

viettel-ca_v4_adm_live.exe

Administrator Manager Tool Version 4.0

MINH THONG CARD SOLUTIONS CO LTD

Publisher:
Viettel Group  (signed by MINH THONG CARD SOLUTIONS CO LTD)

Product:
Administrator Manager Tool Version 4.0

Version:
4.0.0.0

MD5:
0b53ff155793bf4e830c1f93413a7338

SHA-1:
42f564347cfa4e86a886f181abbcf5ffb302bd06

SHA-256:
16a23d4ae66b90190ac082ca8bfe6641babd3b78adfca20ede5165971a4ca19d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 12:29:37 AM UTC  (today)

File size:
698.9 KB (715,704 bytes)

Product version:
4.0.0.0

Copyright:
Copyright (C) 2014 Viettel-CA

Original file name:
vina-ca_adm.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\viettel-ca_v4_adm_live.exe

Digital Signature
Signed by:
MINH THONG CARD SOLUTIONS CO LTD

Authority:
Thawte, Inc.

Valid from:
4/22/2014 7:00:00 AM

Valid to:
7/22/2016 6:59:59 AM

Subject:
CN=MINH THONG CARD SOLUTIONS CO LTD, OU=IT Department, O=MINH THONG CARD SOLUTIONS CO LTD, L=Ho Chi Minh, S=Ho Chi Minh, C=VN

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
3AC28E8920E4349154311A868D4FACA7

File PE Metadata
Compilation timestamp:
7/25/2014 1:38:50 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
12288:lZ6vtqokEbdJiuob3GpDSTSoywefqJWZ6dlbfaH/7Q7PULqwKMgrvqSHDIsSEPEX:ktqokERo3G5oVefqJWZ6/bfaH/7Q7PUL

Entry address:
0x38E47

Entry point:
E8, BC, 76, 00, 00, E9, 17, FE, FF, FF, 3B, 0D, D0, C7, 46, 00, 75, 02, F3, C3, E9, 3C, 77, 00, 00, 51, C7, 01, F4, A1, 45, 00, E8, 34, 78, 00, 00, 59, C3, 56, 8B, F1, E8, EA, FF, FF, FF, F6, 44, 24, 08, 01, 74, 07, 56, E8, D0, 3C, FE, FF, 59, 8B, C6, 5E, C2, 04, 00, 8B, 44, 24, 04, 83, C1, 09, 51, 83, C0, 09, 50, E8, 75, 78, 00, 00, F7, D8, 59, 1B, C0, 59, 40, C2, 04, 00, 51, 53, 55, 56, 57, FF, 35, 88, 16, 47, 00, E8, 3A, 70, 00, 00, FF, 35, 84, 16, 47, 00, 8B, F0, 89, 74, 24, 18, E8, 29, 70, 00, 00, 8B...
 
[+]

Entropy:
6.6834

Code size:
340 KB (348,160 bytes)

The file viettel-ca_v4_adm_live.exe has been seen being distributed by the following 2 URLs.

https://docs.google.com/uc?authuser=0&id=0BxFJ4o4F-3o7cjFLR3ZWeHhBRjQ&export=download

https://doc-00-9c-docs.googleusercontent.com/docs/securesc/cnvlvbb2ibrmt01ucmfn07t4pgec4pko/vr8vvadue2vc4bj21iqt59ugirlp18v8/1450159200000/.../15174626662450450765/0Bw9wuCxCK5f9M1VQSHJkTGZjekU?e=download

Scan viettel-ca_v4_adm_live.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.