» cdroller.exe
Overview
Analysis
File Details

cdroller.exe

CDRoller

IPTS Alisa, OOO

File name:

cdroller.exe

Publisher:

Digital Atlantic Corp. (signed by IPTS Alisa, OOO)

Product:

CDRoller

Version:

10.21.20.0

MD5:

dbc570728d9fb548a4430837612506ea

SHA-1:

8ba2b966ae4a766181c7dd6668b59dc7d424d96f

SHA-256:

d3c14ad73e526f1ce6a11ddcecb75ecdbb84167cf9049666585e487ca267a33b

Scanner detections:

11 / 68

Status:

Clean (11 probable false positive detections)

Explanation:

These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:

4/25/2024 8:54:46 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Trojan.Heur.TP.dw3@bCvh9Mgk

392

Bitdefender

Gen:Trojan.Heur.TP.dw3@bCvh9Mgk

1.0.20.45

Bkav FE

W32.HfsAutoB

1.3.0.7383

Emsisoft Anti-Malware

Gen:Trojan.Heur.TP.dw3@bCvh9Mgk

8.16.01.09.10

F-Secure

Gen:Trojan.Heur.TP.dw3@bCvh9Mgk

11.2016-09-01_7

G Data

Gen:Trojan.Heur.TP.dw3@bCvh9Mgk

16.1.25

IKARUS anti.virus

Trojan-Dropper

t3scan.1.9.5.0

MicroWorld eScan

Gen:Trojan.Heur.TP.dw3@bCvh9Mgk

17.0.0.27

Norman

Gen:Trojan.Heur.TP.dw3@bCvh9Mgk

11.20160109

Trend Micro House Call

Possible_Virus

7.2.9

Trend Micro

Possible_Virus

10.465.09

File size:

3.1 MB (3,270,792 bytes)

Product version:

10.21.20.0

Copyright:

Copyright © 1999-2015 Digital Atlantic Corp.

Trademarks:

Digital Atlantic Corp.

Original file name:

cdroller.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\cdroller\cdroller.exe

Digital Signature

Signed by:

IPTS Alisa, OOO

Authority:

COMODO CA Limited

Valid from:

4/9/2014 2:00:00 AM

Valid to:

4/9/2017 1:59:59 AM

Subject:

CN="IPTS Alisa, OOO", O="IPTS Alisa, OOO", STREET="Zelenograd, D. 526 kv. 22", L=Moscow, S=Zelenograd, PostalCode=124482, C=RU

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

6AB1D9C15BCA16E6E8D4CC27DEF86766

File PE Metadata

Compilation timestamp:

6/20/1992 12:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

98304:GJ8vYtQVuQTY6qwwLX4ScWJ+pwoKhetZ497RA+cvFyQG1jd:LIQTYjyWJ+phKYZO74vwQG1Z

Entry address:

0x98A000

Entry point:

EB, 04, BC, DB, 27, AF, 50, EB, 01, C7, E8, 16, 00, 00, 00, EB, 03, 9A, 75, B5, EB, 04, E9, 6B, D7, CB, 33, C0, 72, 71, 71, 5D, EB, 03, 62, AF, 4C, EB, 05, 00, BF, D2, AD, 77, B8, 0E, 48, FB, F6, EB, 01, A2, EB, 04, C5, 83, 6C, 07, 05, F2, B7, 04, 09, EB, 01, 70, 75, 39, EB, 01, 35, 64, FF, 30, EB, 05, 1A, BD, 0E, 14, BC, 64, 89, 20, EB, 04, 64, 38, AF, 67, EB, 03, BD, A7, 06, 8B, 10, EB, 01, EB, 64, 8F, 00, EB, 05, D1, A6, E4, DA, D7, 83, C4, 04, EB, 01, BF, 58, EB, 02, C8, 60, C3, EB, 01, B5, EB, 01, 89... 
[+]

Entropy:

7.9805 (probably packed)

Code size:

4.8 MB (5,073,920 bytes)

Scan cdroller.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.