home

virdesk.exe

CV. TweakNow Indonesia

Publisher:
CV. TweakNow Indonesia  (signed and verified)

MD5:
9b06d816d67d9ba112fec554c3701a46

SHA-1:
506e41ba24cc31792fc82e42ec4350ecbedb2d46

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 1:57:08 AM UTC  (today)

File size:
2.6 MB (2,680,576 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\tweaknow powerpack 2009\virdesk.exe

Digital Signature
Signed by:
CV. TweakNow Indonesia

Authority:
The USERTRUST Network

Valid from:
12/21/2007 7:00:00 AM

Valid to:
12/21/2009 6:59:59 AM

Subject:
CN=CV. TweakNow Indonesia, O=CV. TweakNow Indonesia, STREET="JL. Pagaden No. 3, Antapani", L=Bandung, S=Jawa Barat, PostalCode=40291, C=ID

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
6390621DF592D8578D8D92F9532E0F7E

File PE Metadata
Compilation timestamp:
5/5/2009 5:55:49 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:jL671Fvdve7s0PncLYEOs9TNgD4RjX+kVKqduNlqhKUzspkFpnzRYqTP4A/8aP:jL69ve7W9TNgDilQiu/qhKUzspkFpGwf

Entry address:
0x1BC9DC

Entry point:
55, 8B, EC, 83, C4, F0, B8, B0, AE, 5B, 00, E8, AC, B9, E4, FF, 68, 80, CA, 5B, 00, E8, 0A, C0, E4, FF, 0F, B7, C0, A3, EC, EB, 5F, 00, 83, 3D, EC, EB, 5F, 00, 00, 75, 72, 68, 80, CA, 5B, 00, E8, D7, BF, E4, FF, 0F, B7, C0, A3, EC, EB, 5F, 00, 33, C0, 55, 68, 72, CA, 5B, 00, 64, FF, 30, 64, 89, 20, A1, 10, C9, 5E, 00, 8B, 00, E8, 69, 10, EC, FF, 8B, 0D, 88, C6, 5E, 00, A1, 10, C9, 5E, 00, 8B, 00, 8B, 15, D4, 78, 5B, 00, E8, 69, 10, EC, FF, A1, 10, C9, 5E, 00, 8B, 00, E8, AD, 11, EC, FF, 33, C0, 5A, 59, 59...
 
[+]

Entropy:
6.6392

Developed / compiled with:
Microsoft Visual C++

Code size:
1.7 MB (1,814,528 bytes)

Scan virdesk.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.