home

wincmds.exe

VISUS Technology Transfer GmbH

Publisher:
VISUS Technology Transfer GmbH  (signed and verified)

MD5:
c3ac6ac22b21c6e06354299886e75819

SHA-1:
df78222217147bfb2ba2adf57367ced785d22636

SHA-256:
578e7e82503fa81f4f34a8ce5c064016e9432934cdb7d30c37269724451c409b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 1:31:27 AM UTC  (today)

File size:
67.7 KB (69,352 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\jre\wincmds.exe

Digital Signature
Signed by:
VISUS Technology Transfer GmbH

Authority:
VeriSign, Inc.

Valid from:
3/18/2010 1:00:00 AM

Valid to:
3/19/2011 12:59:59 AM

Subject:
CN=VISUS Technology Transfer GmbH, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=VISUS Technology Transfer GmbH, L=Bochum, S=Nordrhein-Westfalen, C=DE

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4915E8DCFED478FF104DEFCFAA122B49

File PE Metadata
Compilation timestamp:
10/22/2004 8:57:02 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.55

CTPH (ssdeep):
768:QQ0gk3d+UAiW2hBTnSfT5rIjaq2w0RBGwMDq5YLW3zbCif:QQad+QSflFtBGFDq5Ya/Cs

Entry address:
0x11D4

Entry point:
55, 89, E5, 83, EC, 08, E8, 91, FF, FF, FF, C9, C3, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 70, 72, 6F, 67, 72, 61, 6D, 73, 4D, 65, 6E, 75, 00, 73, 74, 61, 72, 74, 75, 70, 4D, 65, 6E, 75, 00, 64, 65, 73, 6B, 74, 6F, 70, 00, 72, 65, 67, 69, 73, 74, 72, 79, 00, 73, 68, 6F, 72, 74, 6E, 61, 6D, 65, 00, 66, 72, 65, 65, 73, 70, 61, 63, 65, 00, 70, 61, 74, 68, 00, 65, 6E, 76, 00, 6E, 74, 00, 77, 69, 6E, 64, 69, 72, 00, 70, 72, 6F, 67, 6D, 61, 6E, 64, 69, 72, 00, 8D, 76, 00, 55, 89, E5, 83...
 
[+]

Code size:
25 KB (25,600 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.