home

wintoto.exe

Ongame Network Ltd

Publisher:
Ongame Network Ltd  (signed and verified)

MD5:
cb8d1756e31cf0d95ab4aab6237a2f8a

SHA-1:
2e48deea37431538ff414fb24a1e8d951b86c115

SHA-256:
fa71206c4a338b0d275feafc2e0af08d585fc636fd1b61a602cea1a9fb5c2448

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 4:01:54 PM UTC  (today)

File size:
1.7 MB (1,813,384 bytes)

File type:
Executable application (Win32 EXE)

Digital Signature
Signed by:
Ongame Network Ltd

Authority:
Thawte, Inc.

Valid from:
1/10/2014 1:00:00 AM

Valid to:
1/16/2017 12:59:59 AM

Subject:
CN=Ongame Network Ltd, OU=IT, O=Ongame Network Ltd, L=Gibraltar, S=Gibraltar, C=GI

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
60573F7F1A84478BFD02F6836D6AE837

File PE Metadata
Compilation timestamp:
9/25/2014 7:28:11 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
24576:54xOYBwoBG6T2RKw8s5D7pQm2Naxier83BoWxJLvfv+0FKzhU+TT7otp:bYBBBsQ2WzfG0FMhBTMtp

Entry address:
0xFEA00

Entry point:
E8, C7, 08, 01, 00, E9, 16, FE, FF, FF, 55, 8B, EC, B8, FF, FF, 00, 00, 83, EC, 14, 66, 39, 45, 08, 0F, 84, 96, 00, 00, 00, 53, FF, 75, 0C, 8D, 4D, EC, E8, 8B, D9, FF, FF, 8B, 4D, EC, 8B, 51, 14, 33, DB, 3B, D3, 75, 14, 8B, 45, 08, 8D, 48, BF, 66, 83, F9, 19, 77, 03, 83, C0, 20, 0F, B7, C0, EB, 5D, B8, 00, 01, 00, 00, 66, 39, 45, 08, 73, 29, 8D, 45, EC, 50, 6A, 01, FF, 75, 08, E8, FC, 08, 01, 00, 83, C4, 0C, 85, C0, 0F, B7, 45, 08, 74, 39, 8B, 4D, EC, 8B, 89, CC, 00, 00, 00, 66, 0F, B6, 04, 01, EB, C7, FF...
 
[+]

Code size:
1.3 MB (1,318,912 bytes)

Scan wintoto.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.