home

eorg2013.exe

INTUIT INC.

Publisher:
INTUIT INC.  (signed and verified)

MD5:
43b8ff2b8faad129085d69dfc99466d7

SHA-1:
027563b8daad25c0f4ee9d8fb57d89256fc4dbbe

SHA-256:
ba1e21ecd57df368ae317002ef9473da4faf9cb7f5bc33f15d22c93cff697916

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/10/2024 6:50:44 AM UTC  (today)

File size:
675.7 KB (691,967 bytes)

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\eorg2013.exe

Digital Signature
Signed by:
INTUIT INC.

Authority:
VeriSign, Inc.

Valid from:
8/13/2012 12:00:00 AM

Valid to:
8/25/2014 11:59:59 PM

Subject:
CN=INTUIT INC., OU=Lacerte Software Corporation, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=INTUIT INC., L=Plano, S=Texas, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3710C05592C9D8561B5D59689EB2A150

File PE Metadata
Compilation timestamp:
10/1/2013 12:42:35 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:ARYK6xCpr3x+MbUvMLCoUqhJqrjYdHnXo+8e/bcy2ZWuQyI888888888888W888j:WOO4MACCorhJQ2H4+8e52Iu/C

Entry address:
0x87C44

Entry point:
55, 8B, EC, 83, C4, F0, 53, 56, 57, B8, C8, 1F, 48, 00, E8, B1, 31, F8, FF, 33, C0, 55, 68, F4, 7C, 48, 00, 64, FF, 30, 64, 89, 20, 6A, 0A, 68, 5E, 01, 00, 00, 68, 96, 00, 00, 00, 6A, 00, B9, 0A, 00, 00, 00, B2, 01, A1, 4C, 0C, 48, 00, E8, 30, 92, FF, FF, A3, 58, 01, 49, 00, 33, C0, 55, 68, E3, 7C, 48, 00, 64, FF, 30, 64, 89, 20, A1, 58, 01, 49, 00, E8, 8B, 92, FF, FF, EB, 14, 68, 3C, 01, 49, 00, E8, BF, 3A, F8, FF, 68, 3C, 01, 49, 00, E8, E5, 39, F8, FF, 6A, 00, 6A, 00, 6A, 00, 68, 3C, 01, 49, 00, E8, FD...
 
[+]

Entropy:
6.4928

Developed / compiled with:
Microsoft Visual C++

Code size:
537 KB (549,888 bytes)

Scan eorg2013.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.