home

PowerEnterABC.OCX

POWERENTER

Agricultural Bank of China

Publisher:
CSII  (signed by Agricultural Bank of China)

Product:
POWERENTER

Description:
中国农业银行安全输入控件

Version:
2, 3, 4, 10

MD5:
597ca5090f2279a5e781bea174d30faf

SHA-1:
e05ed5df0bb2873be3c2c8eef3a09166e62aa3b7

SHA-256:
3ee3c83c9c9f2d5e8ccac952da567bcfe2f13628ceb6819776a15da9ee56ddd2

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/18/2024 12:52:51 PM UTC  (today)

Scan engine
Detection
Engine version

AVG
Win32/Heur
2015.0.3272

IKARUS anti.virus
Virus.Win32.Heur
t3scan.1.1.118.0

File size:
869.6 KB (890,448 bytes)

Product version:
2, 3, 4, 10

Copyright:
Copyright (C) 2008-2011 CSII

Trademarks:
POWERENTER

Original file name:
PowerEnterABC.OCX

File type:
OLE control extension (Win32 OCX)

Common path:
C:\Program Files\abc ibs security suite 2.3\powerenterabc.ocx

Digital Signature
Signed by:
Agricultural Bank of China

Authority:
VeriSign, Inc.

Valid from:
1/6/2011 8:00:00 AM

Valid to:
2/5/2013 7:59:59 AM

Subject:
CN=Agricultural Bank of China, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Agricultural Bank of China, L=beijing, S=beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
76376A76F0F6CF4D3E3A965279C93109

File PE Metadata
Compilation timestamp:
11/17/2011 12:22:53 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
24576:7p7FuAL4w88oUbLv0JBe4tsR10dp9KKR4bEAED:71FujwJbj0H00D9FRMEt

Entry address:
0x108354

Entry point:
E8, 65, DE, FF, FF, 0D, EA, 74, EF, 7A, 50, 12, A6, CC, 3A, 05, 96, 11, 9A, 2F, A9, 35, B9, 45, C0, 52, E0, 6C, 66, A3, 89, C6, A8, 6D, 43, 30, B3, 23, C4, 01, 7B, AA, 08, 49, F2, BB, EF, 19, CE, 63, E4, 34, 8C, B4, 28, 72, 83, 47, AD, 8B, 57, 10, CC, 7D, AF, E1, AA, 29, E1, 7D, BE, A4, A8, 59, DC, 63, 5E, BF, A6, 3F, A4, F8, DB, 9A, 27, 42, 37, 4D, 4D, 47, 63, 67, 66, 6C, 77, 89, 94, EA, BD, 85, FC, C9, 02, C9, 00, 00, 43, 72, 79, 70, 74, 44, 65, 63, 6F, 64, 65, 4F, 62, 6A, 65, 63, 74, 00, F5, E9, 25, B2...
 
[+]

Entropy:
7.8627  (probably packed)

Code size:
156 KB (159,744 bytes)

Scan PowerEnterABC.OCX - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.