home

ImageGrabber.exe

BurnSuite

Serhiy Horobets

This is installed with BurnSuite.
Publisher:
KLLabs  (signed by Serhiy Horobets)

Product:
BurnSuite

Description:
Image Grabber Wizard

Version:
1.00.01

MD5:
407e958e25de7430e5b9069f992979d2

SHA-1:
a9131b8e3cd81f503787fbdb31cbd49438c0841e

SHA-256:
bf7504ac7c214494508ce1001b6c8c1f87a8dc27e7ef253e6ae4e8fd24743b44

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 4:36:56 PM UTC  (today)

File size:
1021.8 KB (1,046,336 bytes)

Product version:
1.00.01

Copyright:
Copyright (c) 2008 KLLabs

Original file name:
ImageGrabber.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:
Serhiy Horobets

Authority:
The USERTRUST Network

Valid from:
12/21/2007 12:00:00 AM

Valid to:
12/20/2009 11:59:59 PM

Subject:
CN=Serhiy Horobets, O=Serhiy Horobets, STREET="Sechenova st, 7a - 38", L=Kiev, S=Goloseevsky rn, PostalCode=03127, C=UA

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
4C32525A6D5872086E77D646377BEA94

File PE Metadata
Compilation timestamp:
12/28/2008 2:34:14 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:2D/0juOLOMr4Ps7vN7Qa4Ix5UbpCBahlteJ2k1JjOUC3TDOOi/Ia:k/jBoHFJ4yCbpCUhlteFJqUwq/r

Entry address:
0x4EB162

Entry point:
E8, 3B, FF, FF, FF, 05, 72, 18, 00, 00, FF, E0, E8, 2F, FF, FF, FF, 05, 30, 10, 00, 00, FF, E0, E8, 04, 00, 00, 00, FF, FF, FF, FF, 5E, C3, 00, 74, 7C, 1C, 80, 27, 14, 71, B1, F6, EF, 27, 52, E4, 94, E5, 2D, 97, EB, 8B, 4C, 19, 22, B8, 06, 60, 82, D5, 96, 27, A1, 3A, 03, 73, 89, BE, 13, 42, E7, AD, 4C, 9A, 1C, 1D, 8B, 20, 6E, C2, 15, C1, 7C, 60, 5E, 25, E1, 40, 84, 6E, 73, 8B, 91, 47, CF, 12, BA, 4A, AE, 23, CB, A4, 65, AA, 74, BA, 7A, D6, B2, 70, E5, 68, D7, A7, FE, 28, 26, AB, 3F, F8, ED, AB, F7, 1F, F5...
 
[+]

Entropy:
7.9639  (probably packed)

Code size:
2.1 MB (2,155,008 bytes)

The file ImageGrabber.exe has been discovered within the following program.

BurnSuite  by KLLabs
www.kllabs.com
About 8% of users remove it
 
Powered by Should I Remove It?

Scan ImageGrabber.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.