» bovadapoker.exe.temp
Overview
Analysis
File Details

bovadapoker.exe.temp

Trident BPO Trading Limited

File name:

Publisher:

Trident BPO Trading Limited (signed and verified)

MD5:

fda1a44a9fdf75162827c1a5c4f014cb

SHA-1:

7610526c83ec9adda03c1d1caecf3cf6b07796e8

SHA-256:

2dc428e8ab5a2e2872ec16a8813551697b59478df76d5fa46307c1ee3db8eacf

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/27/2024 1:09:59 AM UTC (today)

File size:

6.2 MB (6,469,264 bytes)

Common path:

C:\windows\syswow64\bovadapoker.exe.temp

Digital Signature

Signed by:

Trident BPO Trading Limited

Authority:

GlobalSign nv-sa

Valid from:

11/10/2011 3:34:35 PM

Valid to:

11/10/2014 3:34:35 PM

Subject:

E=ssladmin@bodognetwork.com, CN=Trident BPO Trading Limited, O=Trident BPO Trading Limited, C=MT

Issuer:

CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:

112153A8B963528CA2BB8CD065848DB0065A

File PE Metadata

Compilation timestamp:

12/14/2011 3:42:45 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

98304:UbQjTXgEQUBqiikJLDQJUtHSmgZTdJsv6tWKFdu9CL7XmvB:U8TXBqoJ3FSTJsv6tWKFdu9C

Entry address:

0x3F30FA

Entry point:

E8, 2A, AE, 00, 00, E9, 78, FE, FF, FF, C3, B8, 77, EA, 7F, 00, A3, BC, 09, 9E, 00, C7, 05, C0, 09, 9E, 00, 5E, E1, 7F, 00, C7, 05, C4, 09, 9E, 00, 12, E1, 7F, 00, C7, 05, C8, 09, 9E, 00, 4B, E1, 7F, 00, C7, 05, CC, 09, 9E, 00, B4, E0, 7F, 00, A3, D0, 09, 9E, 00, C7, 05, D4, 09, 9E, 00, EF, E9, 7F, 00, C7, 05, D8, 09, 9E, 00, D0, E0, 7F, 00, C7, 05, DC, 09, 9E, 00, 32, E0, 7F, 00, C7, 05, E0, 09, 9E, 00, BF, DF, 7F, 00, C3, 8B, FF, 55, 8B, EC, E8, 96, FF, FF, FF, E8, B0, B9, 00, 00, 83, 7D, 08, 00, A3, F0... 
[+]

Entropy:

6.5684

Code size:

4.3 MB (4,519,424 bytes)

Scan bovadapoker.exe.temp - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.