heritageclient.exe

ORFO 2014

Informatic Ltd.

Publisher:
Informatic Ltd.  (signed and verified)

Product:
ORFO 2014

Description:
Heritage

Version:
14.1.1.2

MD5:
b9c1868f2a3175f6cf415e8b45cb777e

SHA-1:
3c66510474fe0e53bf65074f8d1a3f409ae5207c

SHA-256:
8a731a095a2794ca0419931d0c6bd194939c7231d1493702a20f655014860f11

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
6/20/2018 10:27:32 AM UTC  (today)

File size:
763.3 KB (781,600 bytes)

Product version:
14.1.1.2

Copyright:
Informatic Ltd, Copyright (C) 2014

Original file name:
Heritage

File type:
Executable application (Win64 EXE)

Language:
Russian (Russia)

Common path:
C:\Program Files\informatic\orfo 2014\heritageclient.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
6/28/2013 6:00:00 AM

Valid to:
8/28/2014 5:59:59 AM

Subject:
CN=Informatic Ltd., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Informatic Ltd., L=Moscow, S=Moscow, C=RU

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
05C84F87982EBDBBDACFED2F45803613

File PE Metadata
Compilation timestamp:
6/23/2014 4:19:18 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:wzX0cmlR2gvM2TMFWVrNkBm43y9tdiZPW4Sw0f:aX0XlR2gvM2TMFErSDKsZPXSw0f

Entry address:
0x2C554

Entry point:
48, 83, EC, 28, E8, 87, 84, 00, 00, 48, 83, C4, 28, E9, 52, FE, FF, FF, CC, CC, 48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 48, 89, 7C, 24, 18, 55, 41, 54, 41, 55, 41, 56, 41, 57, 48, 8B, EC, 48, 83, EC, 50, 45, 33, FF, 49, 8B, F0, 4C, 8B, EA, 48, 8B, F9, 41, 8B, DF, 48, 85, C9, 74, 10, 4D, 85, C0, 75, 07, 33, C0, E9, 90, 01, 00, 00, 66, 44, 89, 39, 48, 85, D2, 75, 19, E8, C3, 0A, 00, 00, C7, 00, 16, 00, 00, 00, E8, 50, 0A, 00, 00, 48, 83, C8, FF, E9, 6E, 01, 00, 00, 48, 8D, 4D, E0, 49, 8B, D1, E8, 8F, D6, FF...
 
[+]

Entropy:
5.7884

Code size:
233.5 KB (239,104 bytes)

Scan heritageclient.exe - Powered by Reason Core Security