home

myconnection2.exe

TODO:

Fort-Funston

Publisher:
TODO: <Company name>  (signed by Fort-Funston)

Product:
TODO: <Product name>

Description:
TODO: <File description>

Version:
1.0.0.2

MD5:
560045c6397b2086ea80f529bc023f76

SHA-1:
323c3ae27316606377d645e3b31674fbf8a348ab

SHA-256:
bfb3ea9a133fe92c92e175227e589d24dd2fc810f5dedc8caaba9efa6bb16576

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/26/2024 11:15:52 AM UTC  (today)

Scan engine
Detection
Engine version

McAfee
Artemis!560045C6397B
5600.7131

NANO AntiVirus
Trojan.Win32.Click3.crnxzi
0.28.0.57630

Trend Micro House Call
TROJ_GEN.F47V1214
7.2.133

File size:
23.9 MB (25,104,896 bytes)

Product version:
1.0.0.2

Copyright:
TODO: (c) <Company name>. All rights reserved.

Original file name:
MYCONNECTION.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Digital Signature
Signed by:
Fort-Funston

Authority:
Fort-Funston

Valid from:
2/6/2013 8:47:54 AM

Valid to:
2/4/2023 8:47:54 AM

Subject:
E=mail@host.domain, CN=changeme, OU=changeme, O=Fort-Funston, L=SanFrancisco, S=CA, C=US

Issuer:
E=mail@host.domain, CN=changeme, OU=changeme, O=Fort-Funston, L=SanFrancisco, S=CA, C=US

Serial number:
00A5B1488D9A1CBA09

File PE Metadata
Compilation timestamp:
12/9/2013 10:01:28 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
393216:OcbbScWCDzF4mRcCg0CZDmwKGAujv1vyZT9ScbB8iK2yp9PLGkgy/elb230um+2p:OcbbSXEF4R90CZDWZ/vM9PyTy/9EEok

Entry address:
0x12A52A

Entry point:
E8, B9, B1, 00, 00, E9, 89, FE, FF, FF, 3B, 0D, 70, 50, 71, 00, 75, 02, F3, C3, E9, 40, B2, 00, 00, 8B, FF, 55, 8B, EC, 56, 8B, 75, 14, 85, F6, 75, 04, 33, C0, EB, 61, 83, 7D, 08, 00, 75, 13, E8, C5, 56, 00, 00, 6A, 16, 5E, 89, 30, E8, AA, B4, 00, 00, 8B, C6, EB, 48, 83, 7D, 10, 00, 74, 16, 39, 75, 0C, 72, 11, 56, FF, 75, 10, FF, 75, 08, E8, CC, 8F, 00, 00, 83, C4, 0C, EB, C7, FF, 75, 0C, 6A, 00, FF, 75, 08, E8, 4A, 6A, 00, 00, 83, C4, 0C, 83, 7D, 10, 00, 74, BB, 39, 75, 0C, 73, 0E, E8, 7B, 56, 00, 00, 6A...
 
[+]

Entropy:
7.4316

Code size:
2.4 MB (2,536,960 bytes)

Scan myconnection2.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.