» allmybooks.exe
Overview
Analysis
File Details

allmybooks.exe

Bolide Software

File name:

allmybooks.exe

Publisher:

Bolide Software (signed and verified)

MD5:

d847392d7176b0110db486e377329287

SHA-1:

b431a1516b5cc61b6abc06a8858a52a629cd0927

SHA-256:

4b3c7090f1413801f85a4b919d0c092958f0a45f30ae2aab23350b71554d1055

Scanner detections:

2 / 68

Status:

Clean (2 probable false positive detections)

Explanation:

These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:

4/19/2024 9:59:49 PM UTC (today)

Scan engine

Detection

Engine version

Trend Micro House Call

Possible_Virus

7.2.73

Trend Micro

Possible_Virus

10.465.14

File size:

3.8 MB (3,939,296 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\allmybooks\allmybooks.exe

Digital Signature

Signed by:

Bolide Software

Authority:

The USERTRUST Network

Valid from:

11/25/2008 7:00:00 PM

Valid to:

11/26/2011 6:59:59 PM

Subject:

CN=Bolide Software, O=Bolide Software, STREET=Astrahanskaya 175/15-53, L=Tambov, S=RU, PostalCode=392005, C=RU

Issuer:

CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:

00F96810F00F4393236A6A11D504664EB6

File PE Metadata

Compilation timestamp:

6/19/1992 6:22:17 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

98304:hQfaPGg3/DN5QmHLfDHAESyTKNmdigKs421h3:hQfaPGsTQmbzAESgKcUv21V

Entry address:

0xB70000

Entry point:

EB, 04, 55, 5F, 34, 6D, 50, EB, 05, C9, C9, B1, 7B, 49, E8, 17, 00, 00, 00, EB, 03, A3, DA, A4, EB, 03, 9B, 11, 1E, 33, C0, EB, 02, 9D, 17, 71, 62, EB, 03, 29, BB, F9, EB, 02, 05, 3B, B8, 3A, 48, E1, F6, EB, 03, D7, 95, D8, EB, 04, 67, A5, 1A, 8F, 05, C6, B7, 1E, 09, EB, 02, 0C, CD, 75, 3E, EB, 03, DA, 62, 23, 64, FF, 30, EB, 03, 44, 75, 9B, 64, 89, 20, EB, 04, 53, 1F, CE, F1, EB, 03, E6, F7, B5, 8B, 10, EB, 01, 61, 64, 8F, 00, EB, 05, 10, 7C, A8, C6, A4, 83, C4, 04, EB, 04, 45, 64, 40, AD, 58, EB, 04, B9... 
[+]

Entropy:

7.9883 (probably packed)

Code size:

5.5 MB (5,807,616 bytes)

Scan allmybooks.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.