home

cardrunnersev_c.exe

CardRunnersEV

StoxEV

Publisher:
StoxEV  (signed and verified)

Product:
CardRunnersEV

Version:
3, 1, 9, 0

MD5:
faae1a9d29d026ad7fc7b9798c0d97ab

SHA-1:
5ab9df049e9afadc6f48c8757a5aaaacc0ad7249

SHA-256:
88ac6a69d7c77f632d6e36520c247d7b080f9fef6de542e0b613b9d61281b72b

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/27/2024 3:50:02 AM UTC  (today)

Scan engine
Detection
Engine version

NANO AntiVirus
Trojan.Win32.XPACK.dowldt
0.30.24.2086

Sophos
Mal/EncPk-ABFU
4.98

Trend Micro House Call
Suspicious_GEN.F47V0204
7.2.35

File size:
13.4 MB (14,055,392 bytes)

Product version:
3, 1, 9, 0

Copyright:
Copyright (C) 2007

Original file name:
StoxEV.EXE

File type:
Executable application (Win64 EXE)

Common path:
C:\Program Files\cardrunnersev\cardrunnersev3\cardrunnersev_c.exe

Digital Signature
Signed by:
StoxEV

Authority:
COMODO CA Limited

Valid from:
4/10/2013 3:00:00 AM

Valid to:
4/10/2016 2:59:59 AM

Subject:
CN=StoxEV, O=StoxEV, STREET=Kolfstraat 123, L=Purmerend, S=Noord-Holland, PostalCode=1442 TC, C=NL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
5F83937A75060E85F04E3413233DFE4E

File PE Metadata
Compilation timestamp:
1/31/2016 6:18:55 PM

OS version:
6.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
393216:gp2buje/Sel33r14zzFJm9+zhh7uP0TjFDwA/:a7qx33r14zZAc37u8pEm

Entry address:
0x23E1000

Entry point:
EB, 08, 0F, 42, D6, 00, 00, 00, 00, 00, E9, 00, 20, 00, 00, 54, 41, 47, 47, 00, 20, 00, 00, B8, 1B, 00, 00, 01, 00, 30, 82, 1B, B4, 06, 09, 2A, 86, 48, 86, F7, 0D, 01, 07, 02, A0, 82, 1B, A5, 30, 82, 1B, A1, 02, 01, 01, 31, 09, 30, 07, 06, 05, 2B, 0E, 03, 02, 1A, 30, 82, 0F, 20, 06, 09, 2A, 86, 48, 86, F7, 0D, 01, 07, 01, A0, 82, 0F, 11, 04, 82, 0F, 0D, D0, 00, 01, 00, 02, C1, B1, A1, 02, 00, 04, 00, 00, 00, 00, 00, 26, 00, 00, 00, 01, 00, 15, B0, A5, B9, AC, DA, 6F, 7F, 31, 9D, 7D, 86, 18, A9, 8A, E9, 56...
 
[+]

Code size:
5.1 MB (5,388,288 bytes)

Scan cardrunnersev_c.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.