home

commtest_1_2_winall.exe

Jason Hatley

Publisher:
Jason Hatley  (signed and verified)

MD5:
0bf9df86c7a26c420c47378c1981521a

SHA-1:
8eadfb38b9a5fd249f14b1b677bca5df24808a5d

SHA-256:
efb922f032984dede21de52ab2677b14776689944970ad36232ba7692a3628e1

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/25/2024 11:45:36 AM UTC  (today)

Scan engine
Detection
Engine version

F-Prot
W32/Heuristic-170
v6.4.7.1.166

Norman
Malware
11.20141016

File size:
58.7 KB (60,096 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\commtest_1_2_winall.exe

Digital Signature
Signed by:
Jason Hatley

Authority:
The USERTRUST Network

Valid from:
5/21/2009 3:00:00 AM

Valid to:
5/22/2010 2:59:59 AM

Subject:
CN=Jason Hatley, O=Jason Hatley, STREET=174 The Cove Road, L=Hallett Cove, S=South Australia, PostalCode=5158, C=AU

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00E9726DEE8AAA53E472FA0EC72F19E8FF

File PE Metadata
Compilation timestamp:
5/24/2009 5:59:26 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
768:MIdr7ZC0SsIW0n9g5i/uc+dvIoJgbngh+BPl+8oEILrwskEBba9oVMhJL8Lzabl4:MIV1CLsdX5Yuc+EnK+zns7baOWJr5kU

Entry address:
0x1A430

Entry point:
60, BE, 00, 00, 41, 00, 8D, BE, 00, 10, FF, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75...
 
[+]

Entropy:
7.8260

Packer / compiler:
UPX 2.90LZMA

Code size:
44 KB (45,056 bytes)

Scan commtest_1_2_winall.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.