home

lbk_20141104134857_multilng.exe

LiberKey Patch

Captel SARL

Publisher:
Liberkey.com  (signed by Captel SARL)

Product:
LiberKey Patch

Version:
1.0.0.12

MD5:
adc9a3271c470ec9adfc76380ab4d7e3

SHA-1:
4772f1df82fa121a72d682677ed8065517bbc58f

SHA-256:
b9afa3fe87d17a96954fd43b3f89d72246b081191fc5690ab4c53d63b6176671

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/1/2024 5:45:38 PM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Trojan.VbCrypt.250
9.0.1.0321

File size:
2.2 MB (2,266,984 bytes)

Product version:
1.0.0.12

Copyright:
Copyright © LiberKey.com

Trademarks:
Liberkey.com

Original file name:
LKPatchMaker.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\lbk_20141104134857_multilng.exe

Digital Signature
Signed by:
Captel SARL

Authority:
GlobalSign nv-sa

Valid from:
10/20/2014 6:02:50 PM

Valid to:
10/21/2015 6:02:50 PM

Subject:
CN=Captel SARL, OU=Captel SARL, O=Captel SARL, L=PARIS, C=FR

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121A3AEC96AA3CFC4BB050FB71F18096EB8

File PE Metadata
Compilation timestamp:
10/24/2014 5:38:21 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:jTesZk8FC7h1SGiYMZoz43Zs8NBPyVcQLcJGZlsLKl/Eba8IJkZ6ng505I:jTeBv+GMs8HPzEXsLjeZ+Z6ng5sI

Entry address:
0x2D78

Entry point:
68, CC, 31, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 38, 00, 00, 00, 00, 00, 00, 00, F2, 06, C5, 13, 3F, 57, 14, 4A, B3, 08, 27, 52, 3A, DE, 23, 5A, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 2D, 43, 30, 30, 30, 2D, 4C, 4B, 50, 61, 74, 63, 68, 00, 00, 00, 00, 00, 01, 00, 07, 00, 78, 58, 40, 00, 00, 00, 00, 00, FF, FF, FF, FF, FF, FF, FF, FF, 00, 00, 00, 00, 1C, 5A, 40, 00, C4, F0, 42, 00, 02, 00, 00, 00, F8, 2D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, F8, 2D, 40, 00...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
184 KB (188,416 bytes)

Scan lbk_20141104134857_multilng.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.