home

fltw.exe

Zimin Sergei Aleksandrovich IP

Publisher:
Zimin Sergei Aleksandrovich IP  (signed and verified)

MD5:
8a4aedc41c817048c50dfbc4c9ea89f3

SHA-1:
bce30108442252fb0f492d233c0f6f3f6fd184c2

SHA-256:
710c8528c9c3d1752bdd06c497d970ddb7ab057456580fe935009f62f33311f1

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/23/2024 1:57:43 PM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
PAK_Generic.009
7.2.216

Trend Micro
PAK_Generic.009
10.465.04

File size:
1.1 MB (1,173,816 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\windows\syswow64\fltw.exe

Digital Signature
Signed by:
Zimin Sergei Aleksandrovich IP

Authority:
The USERTRUST Network

Valid from:
1/23/2011 4:00:00 PM

Valid to:
1/24/2012 3:59:59 PM

Subject:
CN=Zimin Sergei Aleksandrovich IP, O=Zimin Sergei Aleksandrovich IP, STREET=34/6-36 Leningradskaya ul., L=Murom, S=Vladimir rgn., PostalCode=602205, C=RU

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
008E477F257A255CC19F18A2C51B64988E

File PE Metadata
Compilation timestamp:
3/12/2011 3:06:52 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:bMz209m+JBM8Ov6+wQ/tyEvOHEiaKnQ3v0ljcs96:S22D3M8OTl/mkiNQcBk

Entry address:
0x3C73

Entry point:
55, 8B, EC, 83, C4, F0, B8, 00, 10, 40, 00, E8, 01, 00, 00, 00, 9A, 83, C4, 10, 8B, E5, 5D, E9, 45, 4C, 4F, 00, 35, 16, 84, 74, D7, 9C, 96, F0, 24, 86, D1, 4F, 05, 9C, 14, FF, 5D, CC, 35, 97, 9A, 61, FE, ED, 5E, 85, 06, F7, F9, E3, BE, 83, CD, 7B, 36, A8, 47, 56, 89, 12, 6D, 2F, B5, 1D, A5, 41, CB, 23, 11, E1, 9D, E3, 42, 53, 4B, 88, 0F, 92, 51, A9, 21, 17, 45, D1, 65, D0, A3, DB, 28, 1B, 3F, D1, F0, 3A, CE, CE, 92, D6, 34, 6C, 95, 5E, C9, 1A, 81, 8A, E8, 62, 6C, 65, 37, 82, CB, AB, 3B, 80, 63, 0C, 64, 2E...
 
[+]

Entropy:
7.9279

Developed / compiled with:
Microsoft Visual C++

Code size:
1012.5 KB (1,036,800 bytes)

Scan fltw.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.