home

garenacig.exe

Hoa Binh Informatics .,JSC

Publisher:
Hoa Binh Informatics .,JSC  (signed and verified)

MD5:
e58c713c58cd119042029f8cd70f100c

SHA-1:
fcf73ea2a571039f82590a42a4152c7a1b00627a

SHA-256:
e42b495cd71f446fb283956d8e151f03325267f02e4c88373051859e7a392379

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/19/2024 5:25:50 PM UTC  (today)

Scan engine
Detection
Engine version

Emsisoft Anti-Malware
Gen:Trojan.Heur2.FU.qEY@aGUW@fpP
10.0.0.5366

File size:
2.3 MB (2,372,888 bytes)

File type:
Executable application (Win32 EXE)

Digital Signature
Signed by:
Hoa Binh Informatics .,JSC

Authority:
VeriSign, Inc.

Valid from:
8/28/2013 7:00:00 AM

Valid to:
8/28/2016 6:59:59 AM

Subject:
CN="Hoa Binh Informatics .,JSC", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Hoa Binh Informatics .,JSC", L=Ha Noi, S=Ha Noi, C=VN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
39D3C41BF5C01DCA0F41666D7173B8AE

File PE Metadata
Compilation timestamp:
4/11/2015 11:16:46 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:pTvr9w/3Wb7fEo4iFGBxdl73esxDLiFFCC5C5x02sLTtcvOdluY9WtQJS2yzm9qc:FvSfW6d3e8e2snJYjQkmJBi3c/fMBr9s

Entry address:
0x208042

Entry point:
E8, 38, 1A, 00, 00, BE, 74, 45, 28, 24, 64, DF, 4F, 3F, C8, 90, 2A, FF, 9C, B9, 9E, 5F, 54, 15, 3E, DB, F4, B7, 82, D7, 22, 6B, 49, A8, 70, 90, 66, DB, 39, 7D, 29, 21, 3D, 39, 5E, 21, DC, 37, 6D, DE, 24, 92, AD, 04, 34, 5E, 7A, 39, 13, 81, CE, EF, 05, 3E, 74, 65, C9, 55, AE, DE, 8C, 9D, 38, 56, EA, 07, 3C, 2B, 17, B5, 59, F6, FD, CA, CA, C1, 7D, 9F, DA, 71, CF, EB, EE, F1, D5, 9F, 4B, B0, 50, C5, DE, 2D, 29, 54, CE, B7, B2, AD, 91, 99, 32, 90, 85, DE, AC, 18, 17, 1A, 35, 24, CF, AE, 91, 98, 63, 3E, 11, B8...
 
[+]

Entropy:
7.0249

Code size:
958.5 KB (981,504 bytes)

Scan garenacig.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.