home

putty.exe

Apple Medic

Publisher:
Apple Medic  (signed and verified)

MD5:
f87a65c9748b86dac8eb0dfd946e091c

SHA-1:
f51305c1ce4faa2f48d28d247a0909c495a49ad1

SHA-256:
c8a9cbc5e1af3a0697ac9c93eece15c2e102d942264f9b80641c843824bc4433

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/26/2024 6:16:00 AM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
PUP/Win32.MulDown
14.04.23

File size:
1.4 MB (1,500,720 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\putty.exe

Digital Signature
Signed by:
Apple Medic

Authority:
Thawte, Inc.

Valid from:
6/7/2012 9:00:00 AM

Valid to:
7/8/2013 8:59:59 AM

Subject:
CN=Apple Medic, OU=Mobile Team, O=Apple Medic, L=Uijeongbu-si, S=Gyeonggi-do, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
1DF60137DF4CCB9B5BCD255A2F08DEC7

File PE Metadata
Compilation timestamp:
3/15/2013 9:24:45 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:8OmVlpJVyJqhUfO8xC1VWlX+wIJ7OsDLzkQ00VxWmQiZp7+DT9j5DbSNaQZVdIKU:AE3P+tf7SrkVddxXOHh

Entry address:
0x10984C

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, 54, 6A, 50, 00, E8, BF, DB, EF, FF, 8B, 1D, 70, 14, 51, 00, 8B, 03, E8, 3A, 7C, F6, FF, 8B, 03, B2, 01, E8, 65, 9A, F6, FF, 8B, 0D, 68, 16, 51, 00, 8B, 03, 8B, 15, D4, 51, 50, 00, E8, 36, 7C, F6, FF, 8B, 0D, F4, 16, 51, 00, 8B, 03, 8B, 15, 58, 32, 50, 00, E8, 23, 7C, F6, FF, 8B, 0D, D8, 14, 51, 00, 8B, 03, 8B, 15, C0, 30, 50, 00, E8, 10, 7C, F6, FF, 8B, 03, E8, 89, 7C, F6, FF, 5B, E8, 57, B5, EF, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.5740

Developed / compiled with:
Microsoft Visual C++

Code size:
1 MB (1,080,320 bytes)

Scan putty.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.