home

vba32arkit.exe

VIRUSBLOKADA ODO

Publisher:
VirusBlokAda Ltd.  (signed by VIRUSBLOKADA ODO)

Description:
Arkit

Version:
7.0.1197

MD5:
2bce0a04b1b702a96b917153ca5b863c

SHA-1:
d6a46f86a8d75c01291763daa5fb4416695aa1ce

SHA-256:
7bda7dd3a5567200a6c0fa132ca960150aeb19c7813735879bf4d2839761824b

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/19/2024 4:44:38 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Crypt.EPACK.Gen2
8.3.2.2

File size:
990.2 KB (1,013,952 bytes)

Product version:
3.12

Copyright:
Copyright © 1993-2013 VirusBlokAda Ltd. All rights reserved.

Original file name:
Arkit.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\vba32arkit.exe

Digital Signature
Signed by:
VIRUSBLOKADA ODO

Authority:
VeriSign, Inc.

Valid from:
2/22/2012 1:00:00 AM

Valid to:
2/22/2014 12:59:59 AM

Subject:
CN=VIRUSBLOKADA ODO, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=VIRUSBLOKADA ODO, L=Minsk, S=BY, C=BY

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2DA05BBFA05778B979ACB88C01FF8E27

File PE Metadata
Compilation timestamp:
11/28/2013 2:33:42 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:z1okqG8tGA995gkt1C0G5Cpgz0Hfb+dmOU5M83E6A:z1RqG/AGkL6IK+POCGr

Entry address:
0x2445

Entry point:
55, 8B, EC, 83, EC, 28, 53, 56, 33, DB, 57, 53, BA, 58, 10, 01, 00, 89, 5D, FC, E8, 36, F2, FF, FF, 53, BA, 60, 10, 01, 00, A3, 50, 31, 01, 00, E8, 26, F2, FF, FF, 59, 59, A3, 54, 31, 01, 00, 33, F6, 53, 33, FF, 47, 57, FF, B6, D8, 27, 01, 00, FF, 35, 50, 31, 01, 00, E8, AB, FA, FF, FF, 83, C4, 10, 89, 86, F0, 30, 01, 00, 3B, C3, 0F, 84, DA, 00, 00, 00, 83, C6, 04, 83, FE, 44, 72, D1, 53, 57, 68, F3, 91, 99, 17, FF, 35, 54, 31, 01, 00, E8, 80, FA, FF, FF, 53, 57, 68, 76, E7, 2B, AE, FF, 35, 54, 31, 01, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
6.5 KB (6,656 bytes)

Scan vba32arkit.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.