home

Wireshark.exe

Wireshark

Wireshark Foundation

Publisher:
The Wireshark developer community, http://www.wireshark.org/  (signed by Wireshark Foundation)

Product:
Wireshark

Version:
1.8.8

MD5:
66110ad0fd47a8e5e1dabecf96f3982c

SHA-1:
588a0b58a39e94b588b5f776214bf1166544e2e4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 7:54:24 PM UTC  (today)

File size:
2.5 MB (2,668,464 bytes)

Product version:
1.8.8

Copyright:
Copyright © 2000 Gerald Combs <gerald@wireshark.org>, Gilbert Ramirez <gram@alumni.rice.edu> and others

Original file name:
Wireshark.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\wireshark\wireshark.exe

Digital Signature
Signed by:
Wireshark Foundation

Authority:
COMODO CA Limited

Valid from:
7/23/2012 7:00:00 PM

Valid to:
7/24/2013 6:59:59 PM

Subject:
CN=Wireshark Foundation, O=Wireshark Foundation, STREET=199 Fremont, L=San Francisco, S=CA, PostalCode=94105, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
0C8F0AFFBF033FF639E0A288E20A6519

File PE Metadata
Compilation timestamp:
6/7/2013 11:11:36 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:wX3BpPoDeZ0soCUSwykhnINo4V+dtOFMh95xFbw0PVHrtq1OvTjzBDjUcHrVLb80:CJB5smAPFoObfBU480pl4qJwqb805

Entry address:
0x13E964

Entry point:
E8, 57, 08, 00, 00, E9, 1C, FD, FF, FF, FF, 25, 7C, 12, 54, 00, FF, 25, 78, 12, 54, 00, FF, 25, 74, 12, 54, 00, FF, 25, 70, 12, 54, 00, 6A, 14, 68, D8, 0F, 55, 00, E8, 4E, 07, 00, 00, FF, 35, 18, D0, 62, 00, 8B, 35, D8, 10, 54, 00, FF, D6, 89, 45, E4, 83, F8, FF, 75, 0C, FF, 75, 08, FF, 15, B0, 11, 54, 00, 59, EB, 64, 6A, 08, E8, AD, 08, 00, 00, 59, 83, 65, FC, 00, FF, 35, 18, D0, 62, 00, FF, D6, 89, 45, E4, FF, 35, 14, D0, 62, 00, FF, D6, 89, 45, E0, 8D, 45, E0, 50, 8D, 45, E4, 50, FF, 75, 08, 8B, 35, DC...
 
[+]

Entropy:
6.6010

Code size:
1.3 MB (1,310,720 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.