idag64.exe

The Interactive Disassembler

Hex-Rays SA

Scan idag64.exe - Powered by Reason Core Security
Publisher:
Hex-Rays SA

Product:
The Interactive Disassembler

Version:
6.1.11.315

MD5:
fb3955a971dde506f17ef8645710bfb6

SHA-1:
e5d3d806e38da1e10409507041a90504dce7f10e

SHA-256:
0e732074f97e072af4d32bae53575814749d5276795850a9b5f4fd4acfc3f521

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/10/2016 7:31:34 PM UTC  (today)

File size:
2.7 MB (2,832,384 bytes)

Product version:
999.999.999.999

Original file name:
IDAG.EXE

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
4/15/2011 7:09:52 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.0

CTPH (ssdeep):
49152:NeDz/XqD1Bm3HwkqwSDDRwID3B7USXdmzEBO5faENhRohIb/w0AbMFEbsKF1XaZh:9aq5BqloBGJt5t/

Entry address:
0x180C

Entry point:
EB, 10, 66, 62, 3A, 43, 2B, 2B, 48, 4F, 4F, 4B, 90, E9, 98, 70, 59, 00, A1, 8B, 70, 59, 00, C1, E0, 02, A3, 8F, 70, 59, 00, 52, 6A, 00, E8, 8D, 4C, 19, 00, 8B, D0, E8, 6E, FB, 17, 00, 5A, E8, CC, FA, 17, 00, E8, A3, FB, 17, 00, 6A, 00, E8, 04, 13, 18, 00, 59, 68, 34, 70, 59, 00, 6A, 00, E8, 67, 4C, 19, 00, A3, 93, 70, 59, 00, 6A, 00, E9, F7, BE, 18, 00, E9, 32, 13, 18, 00, 33, C0, A0, 7D, 70, 59, 00, C3, A1, 93, 70, 59, 00, C3, 60, BB, 00, 50, B0, BC, 53, 68, AD, 0B, 00, 00, C3, B9, AC, 00, 00, 00, 0B, C9...
 
[+]

Code size:
1.6 MB (1,662,976 bytes)

Scan idag64.exe - Powered by Reason Core Security