home

fvw_k.exe

FastViewer Software Development GmbH

Publisher:
FastViewer Software Development GmbH  (signed and verified)

MD5:
f0d01ecb7468912830ed3188b81e30fd

SHA-1:
f766a3a20ca85d253ff48c7dcb2f504e533fcbed

SHA-256:
caa166386db92f1a8c2f101b65e9ddf7329c217b927b30ca1b88009f48719c8b

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/26/2024 11:18:27 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Agnitum Outpost
Packed/PECompact
7.1.1

Trend Micro House Call
TROJ_FAKEALERT.BMH
7.2.26

File size:
458.3 KB (469,272 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\fvw_k.exe

Digital Signature
Signed by:
FastViewer Software Development GmbH

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
12/11/2006 1:00:00 AM

Valid to:
2/5/2008 12:59:59 AM

Subject:
CN=FastViewer Software Development GmbH, OU=SECURE APPLICATION DEVELOPMENT, O=FastViewer Software Development GmbH, L=Vienna, S=Vienna, C=AT

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
7021C8D8E2B95492785128B97409F496

File PE Metadata
OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.52

CTPH (ssdeep):
6144:mhLKPzh6skOTMZDJHPVaVAQ4Aagq+zuG1zMNGGv8zV2SK0O3EE319jmYTJtLREGn:mRyzh6skNDRVa1nRtzV9a3196SJBREs

Entry address:
0x1000

Entry point:
B8, 0C, C7, 8F, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 75, 7C, FE, 23, 14, 0B, 47, D9, 91, 5B, 92, 68, 07, 61, 16, DD, EF, 2B, 28, B8, 65, D4, 6B, 59, 51, 59, A4, 18, 67, 2A, 8D, F5, C6, 73, DE, 09, E2, C4, 9C, CE, 39, 03, 8C, AD, FE, 77, B8, EA, E4, 80, 8C, 92, B2, 2C, 6E, 17, 41, 21, 4C, 80, 85, 4B, 09, E2, 6F, 93, 66, BB, 27, 5E, F7, 80, 62, B0, 82, 1C, 41, B1, 71, DD, 7D, F6, 3C, 3B, C1, F7, B5, 5B, 8D, 8C, 09, 97, 9E...
 
[+]

Packer / compiler:
PECompact v2

Code size:
971.1 KB (994,380 bytes)

Scan fvw_k.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.