home

motionplatformdesigner.exe

Fly Elise-ng

Publisher:
Fly Elise-ng  (signed and verified)

MD5:
2b9082ce8b924c4842d0c0d0af380de4

SHA-1:
877aff80883db4ecd82c7e7173b1286c2775344b

SHA-256:
a325a10404049791256b4601b6634b0b6b4050e1c645fd4f1194254b47e472e1

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/25/2024 1:06:35 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Packed.Enigma.AAA trojan
6.3.12010.0

File size:
4.1 MB (4,302,432 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\motionplatformdesigner_v1.0r4\install\motionplatformdesigner.exe

Digital Signature
Signed by:
Fly Elise-ng

Authority:
COMODO CA Limited

Valid from:
2/17/2013 6:00:00 PM

Valid to:
2/18/2015 5:59:59 PM

Subject:
CN=Fly Elise-ng, O=Fly Elise-ng, STREET=Grasstrook 24, L=Eindhoven, S=Noord-Brabant, PostalCode=5658 HG, C=NL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
028EC5E313569430CBC13EFE3F4BA406

File PE Metadata
Compilation timestamp:
11/17/2013 8:54:28 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:weL/8Lo/rNdyvsyewyfDY6vJD6Us1o/dd3UAvewwiOBCH4:vLUENbyo7Y6vR6Uq4D2zCY

Entry address:
0x1EA53

Entry point:
55, 8B, EC, 83, C4, F0, B8, 00, 10, 40, 00, E8, 01, 00, 00, 00, 9A, 83, C4, 10, 8B, E5, 5D, E9, F5, C8, AF, 00, 75, 64, 85, 11, 89, 3D, 22, 93, D1, 0C, 51, 16, 3B, 0E, FD, 53, E4, 70, E7, 52, E0, 6D, A5, B4, CC, 20, 6D, 87, 9D, E4, 2C, 98, 6B, 8D, DF, 52, 18, 1E, 2C, 63, F8, EE, 7F, 14, 81, CE, D9, F1, B3, 4C, 46, BB, 09, E0, 8C, 69, D2, 32, 0E, C5, AA, 52, A3, D1, 8F, EF, 4F, 04, A2, 9B, CF, D8, 0D, E8, 6C, 8D, A5, 26, 15, 9B, 2D, CB, A0, F5, AA, F8, 6E, 62, 8C, 53, 8C, 36, 56, 4C, CE, 15, EB, A2, B1, 49...
 
[+]

Entropy:
7.9961

Developed / compiled with:
Microsoft Visual C++

Code size:
4.6 MB (4,816,896 bytes)

Scan motionplatformdesigner.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.