vreveal.exe

MotionDSP Inc.

This file is installed with the program vReveal.
Publisher:
MotionDSP Inc.  (signed and verified)

MD5:
8bafa247f4f3643d1b812b62d6f1de46

SHA-1:
7991f695df147df28b21b48d2390edfdd959250f

SHA-256:
6d3fff480ab044d12a27ef365aea9106d6096446b6292d01087f257ca9894917

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
12/26/2024 2:37:10 AM UTC  (today)

Scan engine
Detection
Engine version

Prevx
Medium Risk Malware
3.0

Sophos
Sus/UnkPacker
4.42

File size:
1.6 MB (1,655,864 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\vreveal\vreveal.exe

Digital Signature
Signed by:

Authority:
GoDaddy.com, Inc.

Valid from:
2/19/2009 12:16:19 PM

Valid to:
2/19/2011 12:16:19 PM

Subject:
CN=MotionDSP Inc., OU=www.motiondsp.com, O=MotionDSP Inc., L=San Mateo, S=CA, C=US

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
02A2E56599

File PE Metadata
Compilation timestamp:
3/17/2009 12:50:10 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
83.82

CTPH (ssdeep):
49152:Katf9l7No/TVZkIPTkWFumSq5iDHAhlsAG:Ztz7Gh2WFumSqQHAhls3

Entry address:
0x94000

Entry point:
60, E8, 00, 00, 00, 00, 5D, 50, 51, 0F, CA, F7, D2, 9C, F7, D2, 0F, CA, EB, 0F, B9, EB, 0F, B8, EB, 07, B9, EB, 0F, 90, EB, 08, FD, EB, 0B, F2, EB, F5, EB, F6, F2, EB, 08, FD, EB, E9, F3, EB, E4, FC, E9, 9D, 0F, C9, 8B, CA, F7, D1, 59, 58, 50, 51, 0F, CA, F7, D2, 9C, F7, D2, 0F, CA, EB, 0F, B9, EB, 0F, B8, EB, 07, B9, EB, 0F, 90, EB, 08, FD, EB, 0B, F2, EB, F5, EB, F6, F2, EB, 08, FD, EB, E9, F3, EB, E4, FC, E9, 9D, 0F, C9, 8B, CA, F7, D1, 59, 58, 50, 51, 0F, CA, F7, D2, 9C, F7, D2, 0F, CA, EB, 0F, B9, EB...
 
[+]

Entropy:
7.3661

Packer / compiler:
ASPack v1.08.04

Code size:
600 KB (614,400 bytes)

The file vreveal.exe has been discovered within the following program.

vReveal  by MotionDSP
About 7% of users remove it
 
Powered by Should I Remove It?

Scan vreveal.exe - Powered by Reason Core Security