home

picpick.exe

PicPick

Wiziple software

Publisher:
NTeWORKS  (signed by Wiziple software)

Product:
PicPick

Version:
4.0.1.0

MD5:
284917e0f7f52620efc25a59681a1321

SHA-1:
9dbaece021491d7e004ca5a83f0e51322ebddcdb

SHA-256:
91a56556872750b7961cd7c4482d117744f06239ce4fa9e434280a1296ddb9ed

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/24/2024 11:15:17 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

McAfee
Artemis!D6EA8D68AEBD
5600.6498

Trend Micro House Call
Suspicious_GEN.F47V0309
7.2.36

Vba32 AntiVirus
Trojan.Waledac.42
3.12.26.3

File size:
19 MB (19,913,536 bytes)

Product version:
4.0.0.0

Original file name:
picpick.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\picpick\picpick.exe

Digital Signature
Signed by:
Wiziple software

Authority:
VeriSign, Inc.

Valid from:
8/22/2013 9:00:00 AM

Valid to:
10/21/2016 8:59:59 AM

Subject:
CN=Wiziple software, OU=IT, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Wiziple software, L=Seoul, S=Seoul, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
018C76F7E4465E8C3EC45F082BEB6FEF

File PE Metadata
Compilation timestamp:
11/18/2014 1:38:37 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:KZKv/U31kHgcpPJjRE6CNI+X4/yZ6ZOqj1T78+7Q:U8pxjCXX4q0Oq9777Q

Entry address:
0x121C4C0

Entry point:
E9, C6, E7, FF, FF, 00, 00, 53, 65, 6E, 64, 4E, 6F, 74, 69, 66, 79, 4D, 65, 73, 73, 61, 67, 65, 57, 00, 00, 00, 53, 61, 66, 65, 41, 72, 72, 61, 79, 43, 72, 65, 61, 74, 65, 00, 68, 92, 9A, 4B, 47, 66, 89, 34, 24, FE, C0, 84, E2, F9, 66, 0F, BA, E6, 0D, 66, F7, C5, 70, 0B, 3A, 07, 9F, B8, 52, 6F, 2E, 02, 8D, 7F, 01, 8D, 64, 24, 2C, 0F, 84, 92, FD, FF, FF, 58, 60, 60, C6, 44, 24, 04, 89, 8D, 64, 24, 40, 0F, 87, 8B, 08, 00, 00, E9, 72, 3F, FF, FF, 00, 00, 43, 6F, 4C, 6F, 63, 6B, 4F, 62, 6A, 65, 63, 74, 45, 78...
 
[+]

Entropy:
7.3341

Packer / compiler:
tElock 0.99 - 1.0 private

Code size:
10.2 MB (10,653,184 bytes)

Scan picpick.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.