» pdoubledecker.exe
Overview
Analysis
File Details

pdoubledecker.exe

Packard Dell

File name:

pdoubledecker.exe

Publisher:

Packard Dell (signed and verified)

MD5:

257477e8cdbe358a7c3995102e0fa134

SHA-1:

1112098620eb20e436c9bd74529f10102142c39f

SHA-256:

74f3db3c02cb3007e3866e6ba8418937aa285b6ad747ed4ad13fbd68deb70899

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/20/2024 1:52:10 PM UTC (today)

File size:

1.5 MB (1,559,992 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\local\{0afdca28-f40d-4695-991c-2a5ed81f1f93}\offline\6d542c07\bcf3ddcb\pdoubledecker.exe

Digital Signature

Signed by:

Packard Dell

Authority:

Unizeto Technologies S.A.

Valid from:

7/12/2011 11:11:11 PM

Valid to:

7/11/2012 11:11:11 PM

Subject:

E=rarmagic@gmail.com, CN=Simon King, O=Packard Dell, C=US

Issuer:

CN=Certum Level III CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:

13ED27572B6BE7549B3C6DFE56A20D80

File PE Metadata

Compilation timestamp:

6/19/1992 3:22:17 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:UXNnac/6ETZ8ONXxMAE8xOJb8xKUpEIQKQEkJ/smk0pSldSkzkCM1yoXkxvfKVzG:UXAsLxOJb8xKXdMQYL1wgZ

Entry address:

0xBF404

Entry point:

55, 8B, EC, 83, C4, EC, 53, 33, C0, 89, 45, EC, B8, 44, EF, 4B, 00, E8, A6, 78, F4, FF, 8B, 1D, 78, 43, 4C, 00, 33, C0, 55, 68, E2, F4, 4B, 00, 64, FF, 30, 64, 89, 20, 8D, 55, EC, 33, C0, E8, 7C, 37, F4, FF, 8B, 45, EC, E8, 20, 5E, FB, FF, 8B, 03, E8, 45, EF, F8, FF, 8B, 03, BA, F8, F4, 4B, 00, E8, 21, EB, F8, FF, 8B, 0D, 28, 44, 4C, 00, 8B, 03, 8B, 15, D8, EA, 4B, 00, E8, 3E, EF, F8, FF, 8B, 0D, A0, 42, 4C, 00, 8B, 03, 8B, 15, 1C, 94, 4B, 00, E8, 2B, EF, F8, FF, 8B, 0D, 94, 45, 4C, 00, 8B, 03, 8B, 15, 78... 
[+]

Entropy:

6.0041

Developed / compiled with:

Microsoft Visual C++

Code size:

761.5 KB (779,776 bytes)

Scan pdoubledecker.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.