home

klimagebuild.exe

Serhiy Horobets

Publisher:
Serhiy Horobets  (signed and verified)

MD5:
da1d090d2f78952f8687afd6ed8f002c

SHA-1:
9c93796a8bc118f0cb6f1a152fb2145bba5574a8

SHA-256:
df977c34c476e74d08db13cda7f54add2fdd2f14fbbe81e65f1e1e18b4e40593

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/25/2024 9:39:00 PM UTC  (today)

Scan engine
Detection
Engine version

Clam AntiVirus
PUA.Packed.EXECryptor
0.98/18011

Quick Heal
(Suspicious) - DNAScan
1.14.11.00

File size:
794.6 KB (813,640 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\burning suite krylack\klimagebuild.exe

Digital Signature
Signed by:
Serhiy Horobets

Authority:
The USERTRUST Network

Valid from:
10/29/2006 5:00:00 PM

Valid to:
10/30/2007 4:59:59 PM

Subject:
CN=Serhiy Horobets, O=Serhiy Horobets, STREET="Sechenova st, 7a - 38", L=Kiev, S=Goloseevsky rn, PostalCode=03127, C=UA

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
76C51EFDF4FC19D25A457F024431DA71

File PE Metadata
Compilation timestamp:
4/27/2007 7:58:24 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
12288:YUcj4GuCii89BNCXEMqxVGjm0bVbgoZR/iwNDRGj50q25wM6+8gi9tLHto+Zb3Cn:kcPd1vNBqm0beUMWDREf2o+mntnb3a

Entry address:
0x1C6E99

Entry point:
E8, 3B, FF, FF, FF, 05, 12, 1D, 00, 00, FF, E0, E8, 2F, FF, FF, FF, 05, DB, 01, 00, 00, FF, E0, E8, 04, 00, 00, 00, FF, FF, FF, FF, 5E, C3, 00, 3B, C5, 15, C4, A8, CE, 48, 24, 95, 67, 57, E2, 18, 40, 35, FC, F3, 15, 94, 54, 2E, 62, 23, 47, E8, BD, 8C, 21, DB, 8E, 90, 29, BE, 6C, 1B, 1F, 65, 31, 5E, 72, A7, 8A, F9, 85, BB, A8, 81, FE, 09, 04, 2F, 28, 17, 20, A9, F0, 60, 19, F6, DB, CC, A8, 52, 2F, 8F, B8, 8D, B5, 40, 86, 15, 3C, A9, 6D, AD, 92, E8, FD, 61, 88, D0, AF, 85, 30, 1A, DB, 61, 7C, 90, 4F, EA, 11...
 
[+]

Entropy:
7.8128  (probably packed)

Code size:
208 KB (212,992 bytes)

The file klimagebuild.exe has been discovered within the following program.

KRyLack Burning Suite  by KRyLack Software
Publisher's description - “KRyLack Burning Suite is a freeware application for all your CD, DVD, Blu-Ray, HD DVD burning needs. It lets you burn Data DVDs, HD-DVDs and Blu-ray Discs, create audio and data CDs, Video DVD.”
www.krylack.com/cd-dvd-blu-ray-hd-dvd-burning-suite
9% remove it
 
Powered by Should I Remove It?

Scan klimagebuild.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.