home

netanimate.exe

NetAnimate

Ilgam Zyulkorneev

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘NetAnimate’.
Publisher:
Ilgam Zyulkorneev  (signed and verified)

Product:
NetAnimate

Description:
Network Activity Animation Tool

Version:
1.6.0.0

MD5:
dd88e3a612182c25896dc505acfb59f8

SHA-1:
e9ac406a2ac9d9aa19a5aefe56e6eef337798276

SHA-256:
ad4d6dcb1425b7997bcd4bf14c0bb0430358b2b6838d67bbb80272eb0d5a7919

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 4:32:47 AM UTC  (today)

File size:
2.1 MB (2,195,960 bytes)

Product version:
1.6.0.0

Copyright:
Ilham Z.

File type:
Executable application (Win32 EXE)

Digital Signature
Signed by:
Ilgam Zyulkorneev

Authority:
COMODO CA Limited

Valid from:
5/21/2013 4:00:00 AM

Valid to:
5/22/2018 3:59:59 AM

Subject:
CN=Ilgam Zyulkorneev, O=Ilgam Zyulkorneev, STREET="Ak. Gubkina 52a, 28", L=Kazan, S=Tatarstan, PostalCode=420088, C=RU

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00D869E92FFFD54363AC4E214AD141F5F4

File PE Metadata
Compilation timestamp:
5/22/2013 9:47:20 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:sWWhPW91xubUFobK7fSwa1iAkDK2fuDHLTxchSErE:HWhPW96QFo32fuDHOhSErE

Entry address:
0x1CE8D4

Entry point:
55, 8B, EC, 83, C4, F0, B8, 48, 5C, 5C, 00, E8, 2C, CB, E3, FF, A1, 48, A6, 5D, 00, 8B, 00, E8, 24, 52, FA, FF, A1, 48, A6, 5D, 00, 8B, 00, B2, 01, E8, 12, 6E, FA, FF, A1, 48, A6, 5D, 00, 8B, 00, C6, 40, 5F, 00, 8B, 0D, 30, A4, 5D, 00, A1, 48, A6, 5D, 00, 8B, 00, 8B, 15, 50, 1C, 5C, 00, E8, 0B, 52, FA, FF, A1, 30, A4, 5D, 00, 8B, 00, E8, 93, 41, FF, FF, A1, 48, A6, 5D, 00, 8B, 00, E8, 57, 53, FA, FF, E8, 1A, 89, E3, FF, 8B, C0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1.8 MB (1,890,304 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
NetAnimate

Command:
"C:\soft_2\netanimate\netanimate.exe" \tray


Scan netanimate.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.