rhino4.exe

Rhinoceros

Robert McNeel and Associates

Scan rhino4.exe - Powered by Reason Core Security
Publisher:
Robert McNeel & Associates  (signed by Robert McNeel and Associates)

Product:
Rhinoceros

Description:
Rhinoceros 4.0

Version:
22-Feb-2008

MD5:
b5f2991e926896c02f3fab91ded8a9fb

SHA-1:
03011b9291d8041935d94f2bac292d878ccbce52

SHA-256:
16d3581f4d06dedd337c1e82b3f359818423e7bec17a2648bd2e6cb5fd177d27

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/7/2016 11:47:09 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Malware.XPACK/RDM!5.1
23.00.65.14608

File size:
11.4 MB (11,985,064 bytes)

Product version:
4.0

Copyright:
1993 - 2008 Robert McNeel & Associates. All Rights Reserved.

Trademarks:
Rhinoceros is a registered trademark of Robert McNeel & Associates.

Original file name:
rhino4_d.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\rhinoceros 4.0\system\rhino4.exe

Digital Signature
Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
11/6/2006 4:00:00 PM

Valid to:
11/16/2008 3:59:59 PM

Subject:
CN=Robert McNeel and Associates, OU=SECURE APPLICATION DEVELOPMENT, O=Robert McNeel and Associates, L=Seattle, S=Washington, C=US

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
00E863AC10C87C73B0C7D61C16FD807F

File PE Metadata
Compilation timestamp:
2/22/2008 1:35:35 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
98304:qpRVNX2nqEgM0J/Q0jiGwl0A4wtCQD2+csGIPuHtChtVjzwP2NckT6xgvmb2:/ceGM4wxFPj7VB

Entry address:
0x71A43F

Entry point:
E8, 13, 07, 00, 00, E9, 36, FD, FF, FF, CC, FF, 25, E4, 9A, B8, 00, FF, 25, E8, 9A, B8, 00, 53, 8A, 5C, 24, 08, F6, C3, 02, 56, 8B, F1, 74, 24, 57, 68, CC, AD, B1, 00, 8D, 7E, FC, FF, 37, 6A, 0C, 56, E8, 58, 01, 00, 00, F6, C3, 01, 74, 07, 57, E8, 5F, 14, B0, FF, 59, 8B, C7, 5F, EB, 13, E8, 40, 09, 00, 00, F6, C3, 01, 74, 07, 56, E8, 49, 14, B0, FF, 59, 8B, C6, 5E, 5B, C2, 04, 00, CC, FF, 25, DC, 9A, B8, 00, FF, 25, D8, 9A, B8, 00, FF, 25, C8, 9A, B8, 00, FF, 25, C4, 9A, B8, 00, 6A, 14, 68, B8, 94, D2, 00...
 
[+]

Entropy:
6.2934

Code size:
7.5 MB (7,892,992 bytes)

Scan rhino4.exe - Powered by Reason Core Security