home

vfbatchocr.exe

Venta Association

Publisher:
Venta Association  (signed and verified)

MD5:
fdf7cf18c0df6ccac70c6b12a5d1a023

SHA-1:
25be378d2e0fde170818a3404dbe1c4bcd6feb93

SHA-256:
d3f19149313a94739e1431a54129519531ff484f9afdc816c08456df25145a48

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 9:58:21 PM UTC  (today)

File size:
336.1 KB (344,136 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\vfbatchocr.exe

Digital Signature
Signed by:
Venta Association

Authority:
COMODO CA Limited

Valid from:
12/1/2013 4:00:00 PM

Valid to:
12/2/2018 3:59:59 PM

Subject:
CN=Venta Association, O=Venta Association, STREET="of. 503, 29a, Bolshoy pr. (P.S.)", L=St.Petersburg, S=n/a, PostalCode=197198, C=RU

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
483D556CBC0F96A26313B4D3A6C4C870

File PE Metadata
Compilation timestamp:
10/12/2015 6:32:28 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
3072:eyPTxpDHjn29OFPrwPCOtvuObMbbbb7bbpWTK/rSnKGArEOy1MgyCYN:eyXbioPrituaK/rSKGArE95yCw

Entry address:
0x4C08

Entry point:
55, 8B, EC, 83, C4, F0, B8, 80, 35, 40, 00, E8, F4, C4, FF, FF, A1, 10, 78, 40, 00, 8B, 00, E8, 64, C6, FF, FF, A1, 10, 78, 40, 00, 8B, 00, B2, 01, E8, 76, C6, FF, FF, 8B, 0D, 1C, 50, 40, 00, A1, 10, 78, 40, 00, 8B, 00, 8B, 15, 00, 1C, 40, 00, E8, 46, C6, FF, FF, A1, 10, 78, 40, 00, 8B, 00, 80, B8, A4, 00, 00, 00, 00, 75, 0C, A1, 10, 78, 40, 00, 8B, 00, E8, 32, C6, FF, FF, E8, FD, C3, FF, FF, 90, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.5201

Developed / compiled with:
Microsoft Visual C++

Code size:
13.5 KB (13,824 bytes)

Scan vfbatchocr.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.