» tmpccd8.exe
Overview
Analysis
File Details

tmpccd8.exe

kleidungsbewusstes

DigiCert

File name:

tmpccd8.exe

Publisher:

DigiCert (signed and verified)

Product:

kleidungsbewusstes

Description:

Fabrikzeitalters

Version:

0.04.0002

MD5:

4d1d333e73149886a5ee7fe9a6a44e4c

SHA-1:

0726e806c1f0a48938502b4acfa81cb804b95314

SHA-256:

a5c723b7e92ffa499fedc9134ff6165520670c49e3b1f2d9487fe3bafa297277

Scanner detections:

2 / 68

Status:

Inconclusive (not enough data for an accurate detection)

Analysis date:

4/24/2024 7:20:14 AM UTC (today)

Scan engine

Detection

Engine version

ESET NOD32

Win32/Injector.BUKU (variant)

9.11162

Malwarebytes

Trojan.EDVBGen

v2015.02.11.08

File size:

263.9 KB (270,264 bytes)

Product version:

0.04.0002

Frauenüberhanges0

Trademarks:

Audiokabel

Original file name:

DirectLine.exe

File type:

Executable application (Win32 EXE)

Language:

Chinese

Common path:

C:\ProgramData\application data\microsoft\secure\icons\temp\tmpccd8.exe

Digital Signature

Signed by:

DigiCert

Authority:

DigiCert Inc

Valid from:

8/8/2012 2:00:00 AM

Valid to:

8/8/2014 2:00:00 PM

Subject:

CN="DigiCert, Inc.", PostalCode=84042, STREET=355 South 520 West, STREET="Canopy Building II, Suite 200", SERIALNUMBER=5299537-0142, OID.1.3.6.1.4.1.311.60.2.1.2=Utah, OID.1.3.6.1.4.1.311.60.2.1.3=US, OID.2.5.4.15=Private Organization

Issuer:

CN=DigiCert EV Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:

054D9508B364A02A068FA5C6153847B6

File PE Metadata

Compilation timestamp:

10/16/2014 10:33:05 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

3072:w1bBQrwwTD+ir5k7rKWmlF/IwERYIJZ/8GjcM:wIv+itorK/8n

Entry address:

0x1158

Entry point:

68, 38, 6E, 42, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 48, 00, 00, 00, 00, 00, 00, 00, 10, 3E, 51, E0, 7C, 58, CF, 44, 83, D0, EA, EB, 57, 40, B6, 90, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 6E, 0D, 0A, 43, 61, 70, 41, 75, 73, 6C, 65, 67, 65, 72, 67, 72, 75, 6E, 64, 6B, F6, 72, 70, 65, 72, 00, 20, 20, 22, 42, 00, 00, 00, 00, FF, CC, 31, 00, 0F, 98, 6E, D8, A1, 09, 22, 58, 4C, 82, 8E, BB, 1A, B3, B9, 42, 70, B3, 82, A5, 99, 92, 93, 1E, 40, B8, BD, 24, E3, 59, 1B, 77, 4A, 3A, 4F, AD... 
[+]

Developed / compiled with:

Microsoft Visual Basic v5.0/v6.0

Code size:

240 KB (245,760 bytes)

Scan tmpccd8.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.