home

opengarden-2.6.8-beta.exe

Open Garden, Inc

This is a setup program which is used to install the application. The file has been seen being downloaded from opengarden.com.
Publisher:
Open Garden  (signed by Open Garden, Inc)

Product:
Open Garden

Version:
2.6.8

MD5:
8d2304fd857f7c984d0b93f310090227

SHA-1:
5e1a5a60894fba565e3fa4c9b4c1902c4377ab88

SHA-256:
e775569b9598548d3e4ac26d51adb6eb6999d32ff3f4bb2a0886409c672ed1bc

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/25/2024 10:36:13 AM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
DLOADER.Trojan
9.0.1.0324

File size:
816.3 KB (835,840 bytes)

Product version:
2.6.8

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\opengarden-2.6.8-beta.exe

Digital Signature
Signed by:
Open Garden, Inc

Authority:
VeriSign, Inc.

Valid from:
7/8/2014 8:00:00 PM

Valid to:
8/3/2015 7:59:59 PM

Subject:
CN="Open Garden, Inc", O="Open Garden, Inc", L=San Francisco, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5723D9F91EE62ED708CFD9AF8E2CD595

File PE Metadata
Compilation timestamp:
7/9/2014 4:00:05 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:7XTCTEj4R7HzTXs8kEY0zi5rNoeYXUGb2hl0:7mTEjiTTcpEY0ahmo0

Entry address:
0x18AC0

Entry point:
E8, 87, 6D, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, C8, 35, 43, 00, 89, 0D, C4, 35, 43, 00, 89, 15, C0, 35, 43, 00, 89, 1D, BC, 35, 43, 00, 89, 35, B8, 35, 43, 00, 89, 3D, B4, 35, 43, 00, 66, 8C, 15, E0, 35, 43, 00, 66, 8C, 0D, D4, 35, 43, 00, 66, 8C, 1D, B0, 35, 43, 00, 66, 8C, 05, AC, 35, 43, 00, 66, 8C, 25, A8, 35, 43, 00, 66, 8C, 2D, A4, 35, 43, 00, 9C, 8F, 05, D8, 35, 43, 00, 8B, 45, 00, A3, CC, 35, 43, 00, 8B, 45, 04, A3, D0, 35, 43, 00, 8D, 45, 08, A3, DC, 35, 43...
 
[+]

Entropy:
7.6019

Code size:
154 KB (157,696 bytes)

The file opengarden-2.6.8-beta.exe has been seen being distributed by the following URL.

https://opengarden.com/.../opengarden-beta.exe

Scan opengarden-2.6.8-beta.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.