home

http_tfd.exe

DasTelefonbuch. Deutschland.

Arktos Media GmbH

Publisher:
TVG Telefon-und Verzeichnisverlag GmbH & Co. KG  (signed by Arktos Media GmbH)

Product:
DasTelefonbuch. Deutschland.

Description:
Telefonbuch Zugriff mit Webbrowser als Windows Anwendung im Benutzermodus

Version:
1.0.3.3

MD5:
2b01deffcb593ac5db33518446832c97

SHA-1:
50f8d8163a8aa42a2c73b1c501f7252855b71a9c

SHA-256:
d1e350975ca431c1090ac40d267d032c76f7c874adb1b4c8098f7f895b0ebf44

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/26/2024 2:15:30 PM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Malware.XPACK/RDM!5.1
23.00.65.151008

File size:
18.5 KB (18,912 bytes)

Product version:
Februar 2007

Copyright:
©2005-2007 Arktos Media GmbH und TVG Telefon-und Verzeichnisverlag GmbH & Co. KG

Original file name:
http_tfd.exe

File type:
Executable application (Win32 EXE)

Language:
German (Germany)

Common path:
C:\Program Files\tvg\dastelefonbuch intranet\http_tfd.exe

Digital Signature
Signed by:
Arktos Media GmbH

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
2/16/2007 1:00:00 AM

Valid to:
2/17/2008 12:59:59 AM

Subject:
CN=Arktos Media GmbH, OU=Secure Application Development, O=Arktos Media GmbH, L=Mannheim, S=Deutschland, C=DE

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
6D187A2F9EF14A799210483D12D38613

File PE Metadata
Compilation timestamp:
2/3/2007 12:39:08 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.56

CTPH (ssdeep):
384:7n7Z6+oohdmAgORpEqvTKer9NRLF7+QLVZGg3clL:7n8+ooDnNpmerXlx+QLwl

Entry address:
0x11D0

Entry point:
55, 89, E5, 83, EC, 14, 6A, 01, FF, 15, 40, 72, 40, 00, E8, ED, FE, FF, FF, 8D, B6, 00, 00, 00, 00, 8D, BC, 27, 00, 00, 00, 00, 55, 89, E5, 83, EC, 14, 6A, 02, FF, 15, 40, 72, 40, 00, E8, CD, FE, FF, FF, 8D, B6, 00, 00, 00, 00, 8D, BC, 27, 00, 00, 00, 00, 55, 8B, 0D, 60, 72, 40, 00, 89, E5, 5D, FF, E1, 8D, 74, 26, 00, 55, 8B, 0D, 50, 72, 40, 00, 89, E5, 5D, FF, E1, 90, 90, 90, 90, 55, 89, E5, 5D, E9, 67, 0A, 00, 00, 90, 90, 90, 90, 90, 90, 90, 55, 89, E5, 57, 56, 53, 81, EC, 08, 0B, 00, 00, 68, B8, 0B, 00...
 
[+]

Packer / compiler:
MingWin32 - Dev C++ v4.x (h)

Code size:
5 KB (5,120 bytes)

Scan http_tfd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.