home

x6zjkzga.exe

FastViewer Software Development GmbH

Publisher:
FastViewer Software Development GmbH  (signed and verified)

MD5:
0cfa5192b676911d17999ba60134a30a

SHA-1:
e1faad1dee70b2addd2c77e97e64de02c52e6ac6

SHA-256:
a66f1266cb74bb6724d8ef65edda97be0688dbe4fa0c1fc7a5d34f5b53cfabbd

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/25/2024 5:53:57 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Packed/PECompact
7.1.1

AVG
Generic4
2017.0.2668

File size:
444.8 KB (455,448 bytes)

Common path:
C:\users\{user}\appdata\local\temp\x6zjkzga.exe.part

Digital Signature
Signed by:
FastViewer Software Development GmbH

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
2/1/2006 1:00:00 AM

Valid to:
2/2/2007 12:59:59 AM

Subject:
CN=FastViewer Software Development GmbH, OU=Secure Application Development, O=FastViewer Software Development GmbH, L=Vienna, S=Vienna, C=AT

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
2E0F23679DB0C73EBF0240E8288F4272

File PE Metadata
OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.52

CTPH (ssdeep):
12288:iPEJTIroteSPS0r3t73jOqqNuQhyZjsQLgtqZAnukeIIGD:YEVIUouSeTj9KCd0nreOD

Entry address:
0x1000

Entry point:
B8, B0, 71, 8E, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 75, 7C, FE, 23, 14, 0B, 47, D9, 91, 5B, 92, 68, 07, 61, 16, DD, EF, 2B, 28, B8, 65, D4, 6B, 59, 51, 59, A4, 18, 67, 2A, 8D, F5, C6, 73, DE, 09, E2, C4, 9C, CE, 39, 03, 8C, AD, FE, 77, B8, EA, E4, 80, 8C, 92, B2, 2C, 6E, 17, 41, 21, 4C, 80, 85, 4B, 09, E2, 6F, 93, 66, BB, 27, 5E, F7, 80, 62, B0, AC, A3, A4, E1, 54, FF, 25, B9, 1A, 4C, E7, 21, 1B, B3, 1B, 39, 2D, EE, 72...
 
[+]

Packer / compiler:
PECompact v2

Code size:
929.1 KB (951,388 bytes)

Scan x6zjkzga.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.