home

widecraft3.exe

Richard Stanway

Publisher:
Richard Stanway  (signed and verified)

MD5:
0988b102d64bc3a597ca520bec1935d4

SHA-1:
c3f3245c0a7fa168a0dbe0605d90837833764db9

SHA-256:
214d3e5b33faddd7eb4e7836fa0407a6f6e5871e4165e34e0cde66aee4fe931c

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/26/2024 10:31:07 PM UTC  (today)

Scan engine
Detection
Engine version

F-Prot
W32/SecRisk-ProcessPatcher-Sml-based
v6.4.6.5.141

K7 AntiVirus
Trojan
13.153.7695

VIPRE Antivirus
RiskTool.Win32.ProcessPatcher.Sml!cobra
13390

File size:
10.8 KB (11,048 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\widecraft3-1.0\widecraft3.exe

Digital Signature
Signed by:
Richard Stanway

Authority:
The USERTRUST Network

Valid from:
6/3/2008 2:00:00 AM

Valid to:
6/4/2009 1:59:59 AM

Subject:
CN=Richard Stanway, O=Richard Stanway, STREET=11850 Dr MLK JR St. N, STREET=Apt 22109, L=St. Petersburg, S=Florida, PostalCode=33716, C=US

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00DCC2D17CAED59F1D8E5894D262F7679F

File PE Metadata
Compilation timestamp:
11/11/2008 1:58:29 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
192:/JUK4rSlqdSFVE8Pmoyn7yowJL/rFkSwg2yq8:hUKNlqdxCmlYJLr9

Entry address:
0x18B4

Entry point:
55, 8B, EC, 6A, FF, 68, A8, 10, 40, 00, 68, 60, 1A, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, 5F, 57, FF, 15, 54, 10, 40, 00, 59, 83, 0D, 30, 20, 40, 00, FF, 83, 0D, 34, 20, 40, 00, FF, FF, 15, 58, 10, 40, 00, 8B, 0D, 2C, 20, 40, 00, 89, 08, FF, 15, 5C, 10, 40, 00, 8B, 0D, 28, 20, 40, 00, 89, 08, A1, 60, 10, 40, 00, 8B, 00, A3, 38, 20, 40, 00, E8, 36, 01, 00, 00, 39, 1D, 10, 20, 40, 00, 75, 0C, 68, 58, 1A, 40, 00, FF, 15...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
4 KB (4,096 bytes)

Scan widecraft3.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.