home

agif.exe

Vladimir Varenkov

Publisher:
Vladimir Varenkov  (signed and verified)

MD5:
991f2e502b9070475d02b1bd27806bf4

SHA-1:
695159405848dd81d9038fd14188baac06c4dc5c

SHA-256:
f867cf2f5c0382843f1e7b80ebc5dbb3896eb3a33c09e0d73833f4a7b4d38a15

Scanner detections:
4 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/19/2024 2:21:02 AM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.CDB
1.3.0.4959

Rising Antivirus
PE:Malware.XPACK-HIE/Heur!1.9C48
23.00.65.141004

Trend Micro House Call
Possible_Virus
7.2.279

Trend Micro
Possible_Virus
10.465.06

File size:
1.2 MB (1,307,328 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\active gif creator 3.8\agif.exe

Digital Signature
Signed by:
Vladimir Varenkov

Authority:
StartCom Ltd.

Valid from:
3/28/2012 11:27:02 AM

Valid to:
3/29/2014 11:55:09 AM

Subject:
E=support@easyanimationtools.com, CN=Vladimir Varenkov, L=Troitsk, S=Moskva Oblast, C=RU, Description=aP8721LmpRRf5N6X

Issuer:
CN=StartCom Class 2 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
05A9

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:/fnpNsPlFgof2uu/G9Mtt72uql6kSr836eN4Q2CPAjAHdQDNwO:/RNWlFpfduuqtDqRq44QzxHdQRN

Entry address:
0x450000

Entry point:
EB, 02, 8A, DA, 50, EB, 01, 72, E8, 18, 00, 00, 00, EB, 04, A8, 51, 3A, FC, EB, 01, E3, 33, C0, EB, 05, F3, 88, 24, 4B, BC, 71, 61, EB, 02, 40, 8D, EB, 05, 65, 80, 3B, F0, 23, B8, 0B, 48, 93, F6, EB, 03, 68, 57, 4B, EB, 01, A2, 05, F5, B7, 6C, 09, EB, 04, AA, BC, 2A, 9B, 75, 3C, EB, 03, 69, 1D, 53, 64, FF, 30, EB, 03, 40, 0C, E9, 64, 89, 20, EB, 03, 59, 38, 2E, EB, 01, 63, 8B, 10, EB, 04, 23, 09, DC, 32, 64, 8F, 00, EB, 01, 70, 83, C4, 04, EB, 04, B1, 09, 89, 86, 58, EB, 03, A0, 29, 60, C3, EB, 04, 7E, DB...
 
[+]

Entropy:
7.9733

Packer / compiler:
FSG v1.10 (Microsoft Visual C++ 6.0 / 7.0)

Code size:
1.5 MB (1,539,072 bytes)

Scan agif.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.