home

бабочки.scr

Top Page, LLC

Publisher:
Top Page, LLC  (signed and verified)

MD5:
b6b4bc47afcd5055b08f5e01eba0dfbb

SHA-1:
9292ff3c5be5231a3424023a02651e8a3ae8ffc7

SHA-256:
c050f52982ac01432961f6fd44114920338b3feaa56291a62e7e22e214f464d4

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/20/2024 2:56:45 AM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Trojan.Inject1.64145
9.0.1.05190

File size:
4.5 MB (4,705,112 bytes)

Common path:
C:\windows\syswow64\бабочки.scr

Digital Signature
Signed by:
Top Page, LLC

Authority:
Thawte, Inc.

Valid from:
10/23/2013 3:00:00 AM

Valid to:
10/24/2014 2:59:59 AM

Subject:
CN="Top Page, LLC", O="Top Page, LLC", L=Novosibirsk, S=Novosibirskaya obl., C=RU

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
6892514D16E53674778D0E9CA8DE442A

File PE Metadata
Compilation timestamp:
1/25/2012 4:48:18 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
49152:kFg0HYO2eFieJ+Uj9OD8H5yNgQEv+cforVR26V6szmuhxju8rxLNhF:kj2wiCJoD8H5yO7+cforr2URhVuuvF

Entry address:
0x14705D

Entry point:
E8, AC, CF, 00, 00, E9, 16, FE, FF, FF, B8, 2F, 4B, 55, 00, A3, 10, C1, 5B, 00, C7, 05, 14, C1, 5B, 00, 2B, 42, 55, 00, C7, 05, 18, C1, 5B, 00, E9, 41, 55, 00, C7, 05, 1C, C1, 5B, 00, 1D, 42, 55, 00, C7, 05, 20, C1, 5B, 00, 93, 41, 55, 00, A3, 24, C1, 5B, 00, C7, 05, 28, C1, 5B, 00, A9, 4A, 55, 00, C7, 05, 2C, C1, 5B, 00, A9, 41, 55, 00, C7, 05, 30, C1, 5B, 00, 13, 41, 55, 00, C7, 05, 34, C1, 5B, 00, A2, 40, 55, 00, C3, E8, 9B, FF, FF, FF, E8, 03, DB, 00, 00, 83, 7C, 24, 04, 00, A3, F0, 49, 5C, 00, 74, 05...
 
[+]

Code size:
1.4 MB (1,499,136 bytes)

Scan бабочки.scr - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.