home

pangphip.exe

Palo Alto Networks

Publisher:
Palo Alto Networks  (signed and verified)

MD5:
416d9d08f08b46424f7d69c1a2f458d3

SHA-1:
37d7cc54eefd4c66198a4cde6c633edee040286c

SHA-256:
528b0c7071b1edc9a3e26b167e343f99a45ee0e69ecf078300d01a4342e9b300

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 10:12:25 PM UTC  (today)

File size:
316.8 KB (324,400 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\palo alto networks\globalprotect\pangphip.exe

Digital Signature
Signed by:
Palo Alto Networks

Authority:
VeriSign, Inc.

Valid from:
1/9/2013 5:30:00 AM

Valid to:
4/10/2016 5:29:59 AM

Subject:
CN=Palo Alto Networks, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Palo Alto Networks, L=Santa Clara, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0A00435A74E5F65951F6EDC4B4CC9182

File PE Metadata
Compilation timestamp:
5/9/2014 12:51:25 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:n3cbx8pZupxmw/IJ4rAmrKl+CHEOXy8mRdN7M4p4:nO8wxamrRWyVRdNm

Entry address:
0x2077A

Entry point:
E8, E9, 07, 00, 00, E9, 37, FD, FF, FF, FF, 25, F4, 21, 42, 00, FF, 25, F8, 21, 42, 00, 51, 8D, 4C, 24, 04, 2B, C8, 1B, C0, F7, D0, 23, C8, 8B, C4, 25, 00, F0, FF, FF, 3B, C8, 72, 0A, 8B, C1, 59, 94, 8B, 00, 89, 04, 24, C3, 2D, 00, 10, 00, 00, 85, 00, EB, E9, CC, FF, 25, FC, 21, 42, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 0F, 03, C1, 1B, C9, 0B, C1, 59, E9, AA, FF, FF, FF, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 07, 03, C1, 1B, C9, 0B, C1, 59, E9, 94, FF...
 
[+]

Entropy:
6.3907

Code size:
132 KB (135,168 bytes)

Scan pangphip.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.