home

f102_screencapture.exe

TODO:

Talking Communities LLC

Publisher:
Talking Communities LLC  (signed and verified)

Product:
TODO: <Product name>

Version:
1.0.0.1

MD5:
2ce7fe1c97e9c8e7f0a8eda1bda01ba9

SHA-1:
f578d6b982ae97420d5cc1fe322eed3bf9a541b4

SHA-256:
5fcf99e7e8849c335826751ed26f43f29216649662c4548401bf3579b5702bda

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 5:32:36 PM UTC  (today)

File size:
442.9 KB (453,544 bytes)

Product version:
1.0.0.1

Copyright:
(c) Talking Communities. All rights reserved.

Original file name:
ScreenCapture.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\f102_screencapture.exe

Digital Signature
Signed by:
Talking Communities LLC

Authority:
COMODO CA Limited

Valid from:
10/2/2013 8:00:00 PM

Valid to:
10/2/2016 7:59:59 PM

Subject:
CN=Talking Communities LLC, O=Talking Communities LLC, STREET=2035 Green Tree Rd, L=West Bend, S=WI, PostalCode=53090, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00B8A903DF50D5015A4685B233FFBC6DAC

File PE Metadata
Compilation timestamp:
10/1/2014 12:14:43 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:Ia28BYlWOcD/80i/1UPG9v9ZTu5oQ9BJ01ph9weB7hh3HrawRolBjt0m3qc:8WOcz8X/1UPGlDWBJ07vFz3HrawOjtuc

Entry address:
0x2865E

Entry point:
E8, B5, 9B, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 51, 53, 8B, 45, 0C, 83, C0, 0C, 89, 45, FC, 64, 8B, 1D, 00, 00, 00, 00, 8B, 03, 64, A3, 00, 00, 00, 00, 8B, 45, 08, 8B, 5D, 0C, 8B, 6D, FC, 8B, 63, FC, FF, E0, 5B, C9, C2, 08, 00, 58, 59, 87, 04, 24, FF, E0, 8B, FF, 55, 8B, EC, 51, 51, 53, 56, 57, 64, 8B, 35, 00, 00, 00, 00, 89, 75, FC, C7, 45, F8, CC, 86, 42, 00, 6A, 00, FF, 75, 0C, FF, 75, F8, FF, 75, 08, E8, 20, 0D, 01, 00, 8B, 45, 0C, 8B, 40, 04, 83, E0, FD, 8B, 4D, 0C, 89, 41, 04, 64, 8B, 3D...
 
[+]

Entropy:
6.2846

Code size:
286 KB (292,864 bytes)

Scan f102_screencapture.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.