home

윈도우용 capt v1.10[한글]_32bit14.exe

MD5:
f1980228989a8c4c82c157d48859bda7

SHA-1:
988b30050d12bedec6de7db385683ee3369c7c10

SHA-256:
fee59d20e03ee65f5d402b5172f8fab462def190416b4826619bad890150e353

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/25/2024 11:30:02 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Clam AntiVirus
Win.Trojan.Agent-905394
0.98/21511

Zillya! Antivirus
Downloader.Agent.Win32.264763
2.0.0.2305

File size:
13.7 MB (14,383,515 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\???? capt v1.10[??]_32bit14.exe

File PE Metadata
Compilation timestamp:
6/20/1992 7:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:tKddKJUlisU6/wGFHEYv0IZSqKU2h+seF7fn8/tWnOgw7JpeMhTGiDnyXWOP:sQJUH//wGFHEU0IZSE2h+VPNs1YM8fP

Entry address:
0x7AC8

Entry point:
55, 8B, EC, 83, C4, EC, 33, C0, 89, 45, EC, B8, 60, 7A, 40, 00, E8, 9F, BE, FF, FF, 33, C0, 55, 68, 65, 7B, 40, 00, 64, FF, 30, 64, 89, 20, 6A, 00, 68, 80, 00, 00, 00, 6A, 03, 6A, 00, 6A, 01, 68, 00, 00, 00, 80, 8D, 55, EC, 33, C0, E8, D9, AB, FF, FF, 8B, 45, EC, E8, 7D, B9, FF, FF, 50, E8, 23, BF, FF, FF, 8B, 15, 24, 82, 40, 00, 89, 02, A1, 24, 82, 40, 00, 83, 38, FF, 74, 28, E8, 88, F5, FF, FF, E8, 03, DC, FF, FF, 8B, 15, 4C, 82, 40, 00, 89, 02, 68, 8C, 5B, 40, 00, BA, 74, 7B, 40, 00, 33, C9, A1, 50, 96...
 
[+]

Entropy:
7.5248

Developed / compiled with:
Microsoft Visual C++

Code size:
27 KB (27,648 bytes)

The file 윈도우용 capt v1.10[한글]_32bit14.exe has been seen being distributed by the following URL.

http://driver.ckbs.onestopfile.co.kr/UPLOAD/.../???? CAPT v1.10[??]_32bit14.exe

Scan 윈도우용 capt v1.10[한글]_32bit14.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.