home

telemaintenanceaiga.exe

FastViewer

FastViewer GmbH und Co KG

This is a setup program which is used to install the application. The file has been seen being downloaded from www.aiga.fr.
Publisher:
Fastviewer.com  (signed by FastViewer GmbH und Co KG)

Product:
FastViewer

Version:
3.10.0018

MD5:
11acacd72a20338e286530da73bea400

SHA-1:
ca76a3ed66ea88b2929c60901b11e96d399c132f

SHA-256:
78f78bda9061fdc99280686c9e97f7b9ad132e134203e6d34c5ffe646e3eac10

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/26/2024 6:21:32 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Packed/PECompact
7.1.1

File size:
1.2 MB (1,252,512 bytes)

Product version:
3.10.0018

Copyright:
(c) FastViewer GmbH. All rights reserved.

Original file name:
FastViewer.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\telemaintenanceaiga.exe

Digital Signature
Signed by:
FastViewer GmbH und Co KG

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
9/2/2009 2:00:00 AM

Valid to:
11/12/2011 12:59:59 AM

Subject:
CN=FastViewer GmbH und Co KG, OU=SECURE APPLICATION DEVELOPMENT, O=FastViewer GmbH und Co KG, L=Neumarkt in der OPf, S=Bayern, C=DE

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
5ABA24A7860039CD7C898AA4E1C9CDAE

File PE Metadata
Compilation timestamp:
9/22/2010 12:53:45 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
24576:GfyFXKWxbL4YJFNBm7eTUN/C1pjRWNClVOdr5Uwn9JXWsHwLrAA5S2X:GfyFX3XNjo7eTUN2jRUdrCwnnjHEAAd

Entry address:
0x1000

Entry point:
B8, 00, DB, 8A, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 05, 88, C5, D2, 4C, B6, 74, 6F, C3, 38, 6B, 91, D9, 55, E9, F9, BC, 22, 3D, 3C, 0B, 78, 2B, D4, CE, 2C, DA, 70, 04, CF, A3, 2D, 76, 7F, 96, 15, C8, 80, 24, 63, 80, E6, 7A, 92, E1, FA, A9, F7, 6A, F4, 16, 33, C2, 8A, 0B, B6, C4, B9, 31, 51, 36, 99, F5, B5, 04, 96, CF, A7, 36, 3C, FF, 39, 40, A7, 94, 50, 77, 10, 8A, 07, 2D, A4, CC, 87, F3, 15, 87, 6C, 86, 89, DC, 81, 9A...
 
[+]

Packer / compiler:
PECompact v2

Code size:
2.3 MB (2,433,024 bytes)

The file telemaintenanceaiga.exe has been seen being distributed by the following URL.

http://www.aiga.fr/.../TelemaintenanceAIGA.exe

Scan telemaintenanceaiga.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.