winver-check.exe

devolo AG

Publisher:
devolo AG  (signed and verified)

MD5:
1d36ffca5aad57a1011c74a05b0e6318

SHA-1:
f5c6c5b21be33d325707ab2fba32ecd4dbcd3490

SHA-256:
7524f0800aca6f0a79751d3fb0fb3758998707ff21e5d99f49587ccf9f4e1454

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 3:50:06 PM UTC  (today)

File size:
53.3 KB (54,592 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\winver-check.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
8/21/2009 2:00:00 AM

Valid to:
8/22/2011 1:59:59 AM

Subject:
CN=devolo AG, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=devolo AG, L=Aachen, S=Nordrhein-Westfalen, C=DE

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4C1B8B2110DA7AC604A58D53BBC4D716

File PE Metadata
Compilation timestamp:
7/6/2010 9:22:30 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
9.0

CTPH (ssdeep):
768:uc57PopmH1QI1E7lKwiRfnr9l1HHlsaeOQUPM0z+I6rQ7dP5bLcbC4Al:NB5xGlP4nr9bnlnTPNAg5b0C4A

Entry address:
0x14C5

Entry point:
E8, CB, 2B, 00, 00, E9, A4, FE, FF, FF, B8, 18, C0, 40, 00, C3, A1, C0, EA, 40, 00, 56, 6A, 14, 5E, 85, C0, 75, 07, B8, 00, 02, 00, 00, EB, 06, 3B, C6, 7D, 07, 8B, C6, A3, C0, EA, 40, 00, 6A, 04, 50, E8, 74, 2C, 00, 00, 59, 59, A3, A0, DA, 40, 00, 85, C0, 75, 1E, 6A, 04, 56, 89, 35, C0, EA, 40, 00, E8, 5B, 2C, 00, 00, 59, 59, A3, A0, DA, 40, 00, 85, C0, 75, 05, 6A, 1A, 58, 5E, C3, 33, D2, B9, 18, C0, 40, 00, EB, 05, A1, A0, DA, 40, 00, 89, 0C, 02, 83, C1, 20, 83, C2, 04, 81, F9, 98, C2, 40, 00, 7C, EA, 6A...
 
[+]

Code size:
35 KB (35,840 bytes)