home

setup9.exe

RestorePoint

Symen Technologies

Publisher:
iMDsoft  (signed by Symen Technologies)

Product:
RestorePoint

Version:
3.11.0052

MD5:
ccb4f0479ff16835773dbe3629f3fcc2

SHA-1:
c5923fd7a510d69d6aa139dc04743b936ab80cef

SHA-256:
90e6d781ef771e63579712fb421cd0c206fb355d5079e424bcaf9d6c349ee036

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/23/2024 9:02:43 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Dropper.Gen
7.11.49.70

File size:
60.3 KB (61,720 bytes)

Product version:
3.11.0052

Original file name:
setup9.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\symen\enativ\setup9.exe

Digital Signature
Signed by:
Symen Technologies

Authority:
VeriSign, Inc.

Valid from:
2/29/2012 4:00:00 PM

Valid to:
3/1/2013 3:59:59 PM

Subject:
CN=Symen Technologies, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Symen Technologies, L=Petah Tikva, S=Kiryat Matalon, C=IL

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
17D32DD30F4D5734DCE2EEAAABDBF76D

File PE Metadata
Compilation timestamp:
11/11/2010 1:19:08 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
768:ue4KakYYC6l2bUBKeQR8a8xL0igCKTiKJNzLg3SkGL01u:CKa3kluR8a8xL0igCKTiWL9kGIo

Entry address:
0x16B8

Entry point:
68, BC, 18, 40, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 38, 00, 00, 00, 00, 00, 00, 00, 09, F5, 25, 27, 98, 85, 55, 4B, 83, 71, 0C, ED, 2F, F4, 23, A2, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 53, 65, 74, 75, 70, 39, 00, 5C, 00, 00, 00, 00, FF, CC, 31, 00, 02, D9, C4, 12, 1C, 48, 61, A0, 43, A1, 46, 17, 29, 39, 66, E0, 3D, D4, 10, 71, B1, 77, 80, 5D, 4A, B1, 0F, AA, 3D, 12, E4, B3, 13, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00, AA, 00, 60, D3, 93, 00, 00, 00...
 
[+]

Entropy:
5.3795

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
36 KB (36,864 bytes)

Scan setup9.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.