home

msic390.tmp

RITLABS S.R.L.

Publisher:
RITLABS S.R.L.  (signed and verified)

MD5:
66cde87c7b5b059a5c902994cd96200d

SHA-1:
32feb0dd406813bca5ced09a261b6a1c052f72c2

SHA-256:
3da3b57b1cd2336791023709acf828fca10b44f0582cf0d25b09d77a08b1279f

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
8/6/2025 10:32:34 PM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
Heur.Packed.Unknown
24116

Zillya! Antivirus
Trojan.Katusha.Win32.44270
2.0.0.2649

File size:
178.1 KB (182,376 bytes)

Common path:
C:\users\{user}\appdata\local\temp\msic390.tmp

Digital Signature
Signed by:
RITLABS S.R.L.

Authority:
Symantec Corporation

Valid from:
6/26/2015 2:00:00 AM

Valid to:
6/26/2016 1:59:59 AM

Subject:
CN=RITLABS S.R.L., O=RITLABS S.R.L., L=Chisinau, S=Republic of Moldova, C=MD

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
11756D584184E9FAADE0D8E77D289B67

File PE Metadata
Compilation timestamp:
1/7/2016 4:48:51 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
3072:bk2Pyr5iBkFMHWkbX1O9D5pOrrXNn9IN2:bkMy02kb0a9D

Entry address:
0x23514

Entry point:
55, 8B, EC, 83, C4, C0, B8, 4C, F7, 41, 00, E8, 40, 5B, FE, FF, E8, FF, 27, FE, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
136 KB (139,264 bytes)

Scan msic390.tmp - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.