» pewce600mainstoneiiiarmv4i_710.exe
Overview
Analysis
File Details

pewce600mainstoneiiiarmv4i_710.exe

Ixia

File name:

Publisher:

Ixia (signed and verified)

MD5:

48bb224c5f52ac1f8d78cd20a4f0fff6

SHA-1:

9171ed5d735a35aaf794226bdb4e20db6c1ec0be

SHA-256:

161d3677d99186a1f25aa2a413164885074f42e805b22e5134a8e872ea6db1eb

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

5/7/2024 12:22:15 AM UTC (today)

File size:

588.9 KB (603,016 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\roaming\microsoft\windows\network shortcuts\olivia (172.21.146.58 (ce android sambe server))\phydm\rtk_wifi_driver_r13848\ce_tools\pewce600mainstoneiiiarmv4i_710.exe

Digital Signature

Signed by:

Ixia

Authority:

VeriSign, Inc.

Valid from:

8/27/2009 8:00:00 AM

Valid to:

9/3/2010 7:59:59 AM

Subject:

CN=Ixia, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Ixia, L=Calabasas, S=California, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

2852ED8A1EC00E97CA5DE5F12E110CA3

File PE Metadata

Compilation timestamp:

6/11/2010 8:33:56 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Linker version:

8.0

CTPH (ssdeep):

12288:tTkdimp3oHEv0Pg7zYIr2YjIINGCd+TttX:tTkM7Yj+RtX

Entry address:

0x86038

Entry point:

F0, 40, 2D, E9, 03, 40, A0, E1, 02, 50, A0, E1, 01, 60, A0, E1, 00, 70, A0, E1, 12, 00, 00, EB, 04, 30, A0, E1, 05, 20, A0, E1, 06, 10, A0, E1, 07, 00, A0, E1, D6, FF, FF, EB, F0, 40, BD, E8, 1E, FF, 2F, E1, 04, C0, 9F, E5, 00, C0, 9C, E5, 1C, FF, 2F, E1, 88, A1, 09, 00, 04, C0, 9F, E5, 00, C0, 9C, E5, 1C, FF, 2F, E1, 8C, A1, 09, 00, 04, C0, 9F, E5, 00, C0, 9C, E5, 1C, FF, 2F, E1, 90, A1, 09, 00, 30, 40, 2D, E9, 4C, 50, 9F, E5, 0B, 3A, A0, E3, 64, 40, 83, E3, 00, 30, 95, E5, 00, 00, 53, E3, 04, 00, 53, 11... 
[+]

Entropy:

5.6769

Code size:

534.5 KB (547,328 bytes)

Scan pewce600mainstoneiiiarmv4i_710.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.