home

Blaise48.exe

Blaise

Centraal Bureau voor de Statistiek (Statistics Netherlands)

The executable Blaise48.exe, “Blaise 4.8 Bootstrap Utility” has been detected as malware by 1 anti-virus scanner.
Publisher:
Statistics Netherlands  (signed by Centraal Bureau voor de Statistiek (Statistics Netherlands))

Product:
Blaise

Description:
Blaise 4.8 Bootstrap Utility

Version:
4.8.4.1767

MD5:
c816c7eedb0914d5cee98bd42860a869

SHA-1:
04204d12b9cc69b0a08a11482d230d5a6cd8078e

SHA-256:
af98d1e7010105b6ee9df86d7f2863caaa90e1028381d655fba546ad351ee9f1

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
4/25/2024 6:24:22 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Threat.Win.Reputation.IMP
17.3.11.21

File size:
325.9 KB (333,728 bytes)

Product version:
4.8

Copyright:
© Statistics Netherlands 1989-2012

Original file name:
Blaise48.exe

File type:
Executable application (Win32 EXE)

Digital Signature
Signed by:
Centraal Bureau voor de Statistiek (Statistics Netherlands)

Authority:
GlobalSign nv-sa

Valid from:
9/16/2010 4:14:01 PM

Valid to:
9/16/2012 4:13:55 PM

Subject:
E=blaise@cbs.nl, CN=Centraal Bureau voor de Statistiek (Statistics Netherlands), OU=Blaise, O=Centraal Bureau voor de Statistiek (Statistics Netherlands), L=Heerlen, S=Limburg, C=NL

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000012B19B1DC86

File PE Metadata
Compilation timestamp:
5/15/2012 7:28:13 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x1000

Entry point:
B8, D8, A3, 55, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 8E, 13, FC, C6, 1E, 62, 9A, A2, 13, 5F, AC, 93, F6, DA, 0E, 4A, 3E, 62, 1D, 64, 84, 49, A8, 0C, 99, B2, F5, 69, 35, D4, 52, AF, E7, 82, B9, EB, DF, 2D, 1B, DD, 5F, 55, ED, BE, 51, CB, BA, 79, 06, CE, B9, 06, C3, 57, 03, D8, 92, 66, 83, 3E, 63, CF, BF, AD, A3, E9, EF, F3, 52, AE, 0A, A5, DF, 59, 93, 9E, CE, E4, D8, D0, 15, 4F, 3E, 32, F6, F9, 2A, 83, D0, 95, A4, 50, B5...
 
[+]

Entropy:
7.9692

Packer / compiler:
PECompact v2

Code size:
739.5 KB (757,248 bytes)

Remove Blaise48.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.