home

garenacig.exe

Hoa Binh Informatics .,JSC

Publisher:
Hoa Binh Informatics .,JSC  (signed and verified)

MD5:
b555ba01af52eb6da9738a6394e0b367

SHA-1:
4860b94e24406dce8cd540d1645c1079be10ce27

SHA-256:
62d38327b31e1e37677e665b3e3e9c23bf6b642242ef6756f360dc5a2765c32a

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/26/2024 6:25:12 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
Win32/Heur
2015.0.4477

Emsisoft Anti-Malware
Gen:Trojan.Heur2.FU.qEY@aGUW@fpP
10.0.0.5366

Norman
Gen:Trojan.Heur2.FU.qEY@aGUW@fpP
03.02.2016 07:38:05

File size:
2.3 MB (2,372,888 bytes)

File type:
Executable application (Win32 EXE)

Digital Signature
Signed by:
Hoa Binh Informatics .,JSC

Authority:
VeriSign, Inc.

Valid from:
8/28/2013 7:00:00 AM

Valid to:
8/28/2016 6:59:59 AM

Subject:
CN="Hoa Binh Informatics .,JSC", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Hoa Binh Informatics .,JSC", L=Ha Noi, S=Ha Noi, C=VN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
39D3C41BF5C01DCA0F41666D7173B8AE

File PE Metadata
Compilation timestamp:
4/11/2015 11:16:46 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:pUvr9w/3Wb7fEo4iFGBxdl73esxDLiFFCC5C5x02sLTtcvOdluY9WtQJS2yzm9qc:mvSfW6d3e8e2snJYjQkmJBi3c/fMBr9s

Entry address:
0x208042

Entry point:
E8, 38, 1A, 00, 00, BE, 74, 45, 28, 24, 64, DF, 4F, 3F, C8, 90, 2A, FF, 9C, B9, 9E, 5F, 54, 15, 3E, DB, F4, B7, 82, D7, 22, 6B, 49, A8, 70, 90, 66, DB, 39, 7D, 29, 21, 3D, 39, 5E, 21, DC, 37, 6D, DE, 24, 92, AD, 04, 34, 5E, 7A, 39, 13, 81, CE, EF, 05, 3E, 74, 65, C9, 55, AE, DE, 8C, 9D, 38, 56, EA, 07, 3C, 2B, 17, B5, 59, F6, FD, CA, CA, C1, 7D, 9F, DA, 71, CF, EB, EE, F1, D5, 9F, 4B, B0, 50, C5, DE, 2D, 29, 54, CE, B7, B2, AD, 91, 99, 32, 90, 85, DE, AC, 18, 17, 1A, 35, 24, CF, AE, 91, 98, 63, 3E, 11, B8...
 
[+]

Entropy:
7.0266

Code size:
958.5 KB (981,504 bytes)

Scan garenacig.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.