home

hibr2dmp.exe

MoonSols Windows Memory Toolkit

MoonSols SARL

Publisher:
MoonSols Limited  (signed by MoonSols SARL)

Product:
MoonSols Windows Memory Toolkit

Description:
hibr2dmp

Version:
2.0.0.0

MD5:
3f624026ee5eaa6ac140cfc826f30d05

SHA-1:
ebbb2ac955fa928f82a47e5c3dd277752113ce38

SHA-256:
69e4c7fb4fc3a67deea656cc9a17ab59d9fc588444f4da08a4f7a60ea96c1060

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
7/15/2025 5:59:07 AM UTC  (today)

File size:
409.5 KB (419,360 bytes)

Product version:
2.0.0.0

Copyright:
Copyright (C) 2013

Original file name:
hibr2dmp.exe

File type:
Executable application (Win32 EXE)

Language:
English (United Kingdom)

Digital Signature
Signed by:
MoonSols SARL

Authority:
GlobalSign nv-sa

Valid from:
12/5/2012 8:27:24 AM

Valid to:
3/3/2016 6:35:10 AM

Subject:
CN=MoonSols SARL, OU=Redteam, O=MoonSols SARL, L=NAUROY, S=Picardie, C=FR

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121C16F9B80A3F827F3715274F748AC6BAA

File PE Metadata
Compilation timestamp:
5/26/2014 9:05:43 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
11.0

CTPH (ssdeep):
3072:AN45ZW/FMSVB1QVPuBwGfVf31yI9icFbXlWTycabGpBxms0qs:A+ZWNtVPpqGfVfFyI9P1Knmt

Entry address:
0xB97C

Entry point:
E8, E0, 02, 00, 00, E9, 91, FE, FF, FF, 55, 8B, EC, FF, 15, 50, D0, 40, 00, 6A, 01, A3, 6C, FC, 40, 00, E8, 51, 05, 00, 00, FF, 75, 08, E8, 4F, 05, 00, 00, 83, 3D, 6C, FC, 40, 00, 00, 59, 59, 75, 08, 6A, 01, E8, 37, 05, 00, 00, 59, 68, 09, 04, 00, C0, E8, 38, 05, 00, 00, 59, 5D, C3, 55, 8B, EC, 81, EC, 24, 03, 00, 00, 6A, 17, E8, 5B, 05, 00, 00, 85, C0, 74, 05, 6A, 02, 59, CD, 29, A3, 50, FA, 40, 00, 89, 0D, 4C, FA, 40, 00, 89, 15, 48, FA, 40, 00, 89, 1D, 44, FA, 40, 00, 89, 35, 40, FA, 40, 00, 89, 3D, 3C...
 
[+]

Entropy:
5.1914

Code size:
44.5 KB (45,568 bytes)

Scan hibr2dmp.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.