home

CTA36.exe

CTA

Performance Trends Inc

Publisher:
Performance Trends  (signed by Performance Trends Inc)

Product:
CTA

Version:
1.00

MD5:
b2591b8954f56030edbae062e770c5fd

SHA-1:
980a3afab3b667fd48c686188de5fbcb6dc87343

SHA-256:
350a78da451c8f481fa5b43d5d136f07efc9532be5d9ecd6977bb6c510ac0ef6

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
6/16/2024 1:33:23 AM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.CDB
1.3.0.4959

Qihoo 360 Security
HEUR/Malware.QVM19.Gen
1.0.0.1015

Rising Antivirus
PE:Malware.XPACK-HIE/Heur!1.9C48
23.00.65.151217

File size:
751.6 KB (769,632 bytes)

Product version:
1.00

Original file name:
CTA36.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\performance trends\circle track analyzer v3.6\cta36.exe

Digital Signature
Signed by:
Performance Trends Inc

Authority:
Thawte, Inc.

Valid from:
1/7/2011 4:00:00 PM

Valid to:
1/7/2013 3:59:59 PM

Subject:
CN=Performance Trends Inc, O=Performance Trends Inc, L=Livonia, S=Michigan, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
3B874D3266D8797236B498D223D5A0A1

File PE Metadata
Compilation timestamp:
12/11/2011 10:56:52 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:jv5NKw1WdgThJWvLBV5I+4gLH6iTusRQFbRUTcO2UAVSn:7KUWdgTWvVnageiTaF+TJ0Sn

Entry address:
0x1A01CC

Entry point:
B4, 05, 0F, BC, C6, F7, C2, 49, 30, 52, CF, 0D, F0, DE, 1E, 6B, EB, 00, 60, 0F, B3, C3, 69, EA, 08, BD, 06, F1, E8, 03, 00, 00, 00, 84, E9, 20, 5A, 0C, F8, FE, C0, 68, 80, 32, 6A, 82, 5F, 68, C2, 77, 01, 00, 0F, AC, D8, BC, 0F, C1, EE, 5E, 1B, C3, 68, 8E, DF, A1, E4, 59, E8, 04, 00, 00, 00, A3, F6, B8, 7E, 58, BA, 51, 39, 7C, 4C, 4D, 0F, AC, F3, 18, FF, CA, 68, 79, 00, 00, 00, 0F, C1, DD, 5D, 89, D3, C7, C3, AE, AB, CB, 06, EB, 03, 10, 38, 3E, 69, D5, 50, 17, F4, 6C, 03, C5, 8A, DA, 0F, A3, F2, 0F, BA, ED...
 
[+]

Entropy:
7.9893  (probably packed)

Code size:
1.5 MB (1,597,440 bytes)

Scan CTA36.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.