home

eboostr.exe

MDO

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer.
Publisher:
eBoostr  (signed by MDO)

Product:
eBoostr

Description:
eBoostr installation file

Version:
2.0.419

MD5:
77441bad7b3ba06a56eb6b659c6b9d10

SHA-1:
1e2071e087375fa89b4880db91fe90e0ac6a39bc

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 11:47:36 PM UTC  (a few moments ago)

File size:
1 MB (1,054,072 bytes)

Product version:
2.0

Copyright:
(c) 2007-2008 eBoostr

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Common path:
C:\documents and settings\owner\??\???\software\ram disk\eboostr.exe

Digital Signature
Signed by:
MDO

Authority:
The USERTRUST Network

Valid from:
2/6/2008 8:00:00 AM

Valid to:
2/6/2011 7:59:59 AM

Subject:
CN=MDO, O=MDO, STREET=Volgogradskiy prospekt 26-1, L=Moscow, S=n/a, PostalCode=109319, C=RU

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
009A42CE567747E6FFD766BA2193EF2723

File PE Metadata
Compilation timestamp:
6/9/2007 5:48:38 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
24576:TXf+l5hfeyt9dCrXw6jrS6fZyl6fTsLpQJFSBv+sGqqj:TPo5hfeytif0l6fwtQjSB2oM

Entry address:
0x32FA

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 70, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 53, FF, 15, 78, 72, 40, 00, A3, D4, 3F, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, E8, F4, 41, 00, FF, 15, 54, 71, 40, 00, 68, 2C, 92, 40, 00, 68, 20, 37, 42, 00, E8, A3, 27, 00, 00, FF, 15, B4, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, 91, 27, 00, 00, 53, FF, 15, 08, 71, 40, 00, 80, 3D, 00, 90, 42, 00, 22, A3, 20, 3F, 42, 00, 8B, C7, 75, 0A...
 
[+]

Entropy:
7.9681

Packer / compiler:
Nullsoft install system v2.x

Code size:
22.5 KB (23,040 bytes)

Scan eboostr.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.