home

flipbooktemplate.exe

WONDER IDEA TECHNOLOGY LIMITED

Publisher:
WONDER IDEA TECHNOLOGY LIMITED  (signed and verified)

Version:
1.0.0.0

MD5:
898110388af2a7d89a34e6058eda20ef

SHA-1:
c7ee25e7a129a90dae4ea9e81e95c0c5e5bf4fc2

SHA-256:
2256630066b25e170b9121e54670366d0bf557f3d46cc08e71105e12ee0c9e4f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 8:10:09 PM UTC  (today)

File size:
5.3 MB (5,563,552 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\flipbooktemplate.exe

Digital Signature
Signed by:
WONDER IDEA TECHNOLOGY LIMITED

Authority:
COMODO CA Limited

Valid from:
11/29/2012 6:00:00 PM

Valid to:
11/30/2014 5:59:59 PM

Subject:
CN=WONDER IDEA TECHNOLOGY LIMITED, O=WONDER IDEA TECHNOLOGY LIMITED, STREET="FLAT 01C3 10/F CARNIVAL COMMERCIAL BUILDING,", STREET=18 JAVA RD. NORTH POINT, L=HONG KONG, S=HONG KONG, PostalCode=NA, C=HK

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00CCFEDE5F0555BAC31D54EC1DB9EFFDE7

File PE Metadata
Compilation timestamp:
6/19/1992 5:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:BFi4xJjCj4eGP34Ow3UH+3cnOOJ9Njl4ece6GMUdaVelHxzINC752:GaCj4eqHwEHTOOJrl48DueJO4752

Entry address:
0x26698C

Entry point:
55, 8B, EC, 83, C4, EC, 53, 56, 57, 33, C0, 89, 45, EC, B8, 2C, 60, 66, 00, E8, 08, 13, DA, FF, 33, C0, 55, 68, C9, 6A, 66, 00, 64, FF, 30, 64, 89, 20, 8D, 55, EC, B8, E0, 6A, 66, 00, E8, E5, 08, E7, FF, 8B, 55, EC, A1, 88, A9, 6A, 00, E8, 18, EB, D9, FF, 68, F4, 6A, 66, 00, 8B, 0D, 88, A9, 6A, 00, 8B, 09, A1, C0, A6, 6A, 00, BA, FA, 00, 00, 00, E8, 8C, FC, E6, FF, 33, D2, 55, 68, 81, 6A, 66, 00, 64, FF, 32, 64, 89, 22, 68, 99, 05, 00, 00, 68, 04, 6B, 66, 00, 68, 10, 6B, 66, 00, 68, 3C, 6B, 66, 00, B9, 48...
 
[+]

Entropy:
7.4871

Developed / compiled with:
Microsoft Visual C++

Code size:
2.4 MB (2,513,920 bytes)

Scan flipbooktemplate.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.