× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: f3ec716bc19db9ec22977ace2af5a2136a69852638ce592500146925199266b6
File name: wodFtpDLX.NET.msi
Detection ratio: 0 / 55
Analysis date: 2016-02-09 07:25:10 UTC ( 3 years, 1 month ago )
Antivirus Result Update
Ad-Aware 20160209
AegisLab 20160209
Yandex 20160206
AhnLab-V3 20160208
Alibaba 20160204
ALYac 20160209
Antiy-AVL 20160209
Arcabit 20160209
Avast 20160209
AVG 20160209
Avira (no cloud) 20160209
Baidu-International 20160208
BitDefender 20160209
Bkav 20160204
ByteHero 20160209
CAT-QuickHeal 20160208
ClamAV 20160208
CMC 20160205
Comodo 20160209
Cyren 20160209
DrWeb 20160209
Emsisoft 20160209
ESET-NOD32 20160209
F-Prot 20160129
F-Secure 20160209
Fortinet 20160209
GData 20160209
Ikarus 20160209
Jiangmin 20160209
K7AntiVirus 20160209
K7GW 20160209
Kaspersky 20160209
Malwarebytes 20160208
McAfee 20160209
McAfee-GW-Edition 20160209
Microsoft 20160209
eScan 20160209
NANO-Antivirus 20160209
nProtect 20160205
Panda 20160208
Qihoo-360 20160209
Rising 20160208
Sophos AV 20160209
SUPERAntiSpyware 20160209
Symantec 20160208
Tencent 20160209
TheHacker 20160208
TotalDefense 20160208
TrendMicro 20160209
TrendMicro-HouseCall 20160209
VBA32 20160208
VIPRE 20160209
ViRobot 20160209
Zillya 20160208
Zoner 20160209
The file being studied is a Windows Installer file! These types of files are software components used for the installation, maintenance, and removal of software on modern Microsoft Windows systems.
Authenticode signature block
Signature verification Signed file, verified signature
Signing date 5:33 PM 2/4/2016
Signers
[+] Secure Plus d.o.o.
Status Valid
Valid from 1:00 AM 3/26/2015
Valid to 12:59 AM 3/26/2017
Valid usage Code Signing
Algorithm sha256RSA
Thumbrint 13789C94A58006906E7C82C20BA103D645CCA4C1
Serial number 00 F3 0A 76 26 B1 EA EE B3 80 10 37 8A 06 F5 75 AE
[+] COMODO RSA Code Signing CA
Status Valid
Valid from 1:00 AM 5/9/2013
Valid to 12:59 AM 5/9/2028
Valid usage Code Signing
Algorithm sha384RSA
Thumbrint B69E752BBE88B4458200A7C0F4F5B3CCE6F35B47
Serial number 2E 7C 87 CC 0E 93 4A 52 FE 94 FD 1C B7 CD 34 AF
[+] COMODO SECURE?
Status Valid
Valid from 1:00 AM 1/19/2010
Valid to 12:59 AM 1/19/2038
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing, EFS, IPSEC Tunnel, IPSEC User
Algorithm sha384RSA
Thumbrint AFE5D244A8D1194230FF479FE2F897BBCD7A8CB4
Serial number 4C AA F9 CA DB 63 6F E0 1F F7 4E D8 5B 03 86 9D
Counter signers
[+] Symantec Time Stamping Services Signer - G4
Status Valid
Valid from 1:00 AM 10/18/2012
Valid to 12:59 AM 12/30/2020
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 65439929B67973EB192D6FF243E6767ADF0834E4
Serial number 0E CF F4 38 C8 FE BF 35 6E 04 D8 6A 98 1B 1A 50
[+] Symantec Time Stamping Services CA - G2
Status Valid
Valid from 1:00 AM 12/21/2012
Valid to 12:59 AM 12/31/2020
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 6C07453FFDDA08B83707C09B82FB3D15F35336B1
Serial number 7E 93 EB FB 7C C6 4E 59 EA 4B 9A 77 D4 06 FC 3B
[+] Thawte Timestamping CA
Status Valid
Valid from 1:00 AM 1/1/1997
Valid to 12:59 AM 1/1/2021
Valid usage Timestamp Signing
Algorithm md5RSA
Thumbrint BE36A4562FB2EE05DBB3D32323ADF445084ED656
Serial number 00
OLE structured storage summary
template
Intel;0
author
WeOnlyDo Software
page_count
110
word_count
2
application_name
WeOnlyDo Software
revision_number
{DCD6B8A9-6282-4F5F-9E4F-F647FE92898D}
keywords
SSH SFTP FTP FTPS SSL File Transfer C# NET
title
WeOnlyDo! wodFtpDLX.NET Component
security
2
OLE Streams
name
Root Entry
clsid
000c1084-0000-0000-c000-000000000046
type_literal
root
clsid_literal
on
sid
0
size
33920
type_literal
stream
size
6427
name
\x05DigitalSignature
sid
59
type_literal
stream
size
408
name
\x05SummaryInformation
sid
41
type_literal
stream
size
4431086
name
\u4230\u4327\u47a4\u4126\u4825
sid
52
type_literal
stream
size
40960
name
\u430b\u4131\u4735\u3afe\u446c\u4564\u387c\u38c7
sid
46
type_literal
stream
size
36864
name
\u430b\u4131\u4735\u3afe\u446c\u4564\u387c\u3987
sid
47
type_literal
stream
size
36864
name
\u430b\u4131\u4735\u3afe\u446c\u4564\u387c\u3a47
sid
48
type_literal
stream
size
472312
name
\u430b\u4131\u4735\u3afe\u446c\u4564\u47bc\u4336\u4227\u3981
sid
10
type_literal
stream
size
94556
name
\u430b\u4131\u4735\u3afe\u446c\u4564\u47bc\u44b7\u3873\u4806
sid
7
type_literal
stream
size
318
name
\u430b\u4131\u4735\u3dfe\u46a8
sid
16
type_literal
stream
size
318
name
\u430b\u4131\u4735\u3fbe\u4833
sid
17
type_literal
stream
size
2998
name
\u430b\u4131\u4735\u41be\u4432\u43f3\u45e8\u482c
sid
8
type_literal
stream
size
2998
name
\u430b\u4131\u4735\u41be\u45b8\u4337\u44a6\u4831
sid
9
type_literal
stream
size
766
name
\u430b\u4131\u4735\u423e\u41bb\u412f\u4330\u4826
sid
11
type_literal
stream
size
1078
name
\u430b\u4131\u4735\u433e\u4271\u4832
sid
12
type_literal
stream
size
2998
name
\u430b\u4131\u4735\u433e\u45b1\u4337\u44a6\u4831
sid
13
type_literal
stream
size
49152
name
\u430b\u4131\u4735\u44fe\u4235\u4339\u46a8\u4568
sid
18
type_literal
stream
size
2998
name
\u430b\u4131\u4735\u457e\u4428\u4672\u41ac\u4832
sid
15
type_literal
stream
size
2998
name
\u430b\u4131\u4735\u457e\u44e8\u4324\u4335\u4826
sid
14
type_literal
stream
size
3456
name
\u4840\u3b3f\u43f2\u4438\u45b1
sid
55
type_literal
stream
size
200
name
\u4840\u3c9e\u421d\u45fb
sid
32
type_literal
stream
size
75084
name
\u4840\u3f3f\u4577\u446c\u3b6a\u45e4\u4824
sid
57
type_literal
stream
size
7600
name
\u4840\u3f3f\u4577\u446c\u3e6a\u44b2\u482f
sid
56
type_literal
stream
size
174
name
\u4840\u3f7f\u4164\u422f\u4836
sid
54
type_literal
stream
size
10776
name
\u4840\u3fff\u43e4\u41ec\u45e4\u44ac\u4831
sid
39
type_literal
stream
size
16
name
\u4840\u4115\u4478\u42e6\u448c\u41f1\u45ec\u44ac\u4831
sid
58
type_literal
stream
size
36
name
\u4840\u411b\u4327\u3af2\u45f8\u44b7\u4831
sid
30
type_literal
stream
size
408
name
\u4840\u418a\u4337\u4472\u421d\u45fb
sid
1
type_literal
stream
size
48
name
\u4840\u41ca\u4330\u3bb1\u423b\u4626\u4237\u421c\u4634\u4468\u4226
sid
2
type_literal
stream
size
42
name
\u4840\u41ca\u4330\u3fb1\u3f12\u4528\u4238\u41b1\u4828
sid
3
type_literal
stream
size
84
name
\u4840\u41ca\u45f9\u46ce\u41a8\u45f8\u3f28\u4528\u4238\u41b1\u4828
sid
4
type_literal
stream
size
200
name
\u4840\u420f\u45e4\u4578\u3b28\u4432\u44b3\u4231\u45f1\u4836
sid
50
type_literal
stream
size
32
name
\u4840\u420f\u45e4\u4578\u4828
sid
27
type_literal
stream
size
12
name
\u4840\u4216\u4327\u4824
sid
53
type_literal
stream
size
24
name
\u4840\u421b\u432a\u45f6\u4735
sid
44
type_literal
stream
size
30
name
\u4840\u421b\u44b0\u4239\u430f\u422f
sid
42
type_literal
stream
size
36
name
\u4840\u421d\u45fb\u45dc\u43fc\u4828
sid
31
type_literal
stream
size
576
name
\u4840\u42dc\u4572\u41b7\u45f8
sid
45
type_literal
stream
size
60
name
\u4840\u430b\u4131\u4735
sid
6
type_literal
stream
size
372
name
\u4840\u430d\u4235\u45e6\u4572\u483c
sid
24
type_literal
stream
size
506
name
\u4840\u430d\u43e4\u42b2
sid
23
type_literal
stream
size
1080
name
\u4840\u430f\u422f
sid
43
type_literal
stream
size
70
name
\u4840\u4320\u4236\u4115\u42b1\u4138\u422a
sid
33
type_literal
stream
size
120
name
\u4840\u4320\u4236\u4119\u42f7\u411f\u4335\u4164\u422f
sid
35
type_literal
stream
size
24
name
\u4840\u4320\u4236\u4216\u4327\u3e24\u45f3\u44ac\u45b1
sid
34
type_literal
stream
size
14
name
\u4840\u4320\u4236\u421b\u422f\u45a4\u3da8\u41e8\u412c
sid
37
type_literal
stream
size
40
name
\u4840\u4320\u4236\u421b\u422f\u45a4\u4828
sid
36
type_literal
stream
size
28
name
\u4840\u4320\u4236\u45dc\u4235\u4424\u430f\u422f\u4836
sid
38
type_literal
stream
size
456
name
\u4840\u4452\u45f6\u43e4\u3baf\u423b\u4626\u4237\u421c\u4634\u4468\u4226
sid
28
type_literal
stream
size
102
name
\u4840\u4452\u45f6\u43e4\u3faf\u3f12\u4528\u4238\u41b1\u4828
sid
29
type_literal
stream
size
600
name
\u4840\u448c\u44f0\u4472\u4468\u4837
sid
49
type_literal
stream
size
88
name
\u4840\u448c\u45f1\u44b5\u3b2f\u4472\u4327\u4337\u4472
sid
20
type_literal
stream
size
1020
name
\u4840\u448c\u45f1\u44b5\u3baf\u4239\u45f1
sid
21
type_literal
stream
size
5772
name
\u4840\u448c\u45f1\u44b5\u482f
sid
19
type_literal
stream
size
16
name
\u4840\u44de\u456a\u41e4\u4828
sid
40
type_literal
stream
size
104
name
\u4840\u454c\u4128\u4237\u448f\u41ef\u4568
sid
51
type_literal
stream
size
532
name
\u4840\u454e\u44b5\u4835
sid
25
type_literal
stream
size
264
name
\u4840\u4559\u44f2\u4568\u4737
sid
5
type_literal
stream
size
104
name
\u4840\u460c\u45f6\u4432\u418a\u4337\u4472
sid
22
type_literal
stream
size
72
name
\u4840\u464e\u4468\u3db7\u44e4\u4333\u42b1
sid
26
ExifTool file metadata
MIMEType
image/vnd.fpx

Template
Intel;0

Title
WeOnlyDo! wodFtpDLX.NET Component

FileType
FPX

Author
WeOnlyDo Software

FileTypeExtension
fpx

Words
2

Keywords
SSH SFTP FTP FTPS SSL File Transfer C# NET

Security
Read-only recommended

Pages
110

RevisionNumber
{DCD6B8A9-6282-4F5F-9E4F-F647FE92898D}

Software
WeOnlyDo Software

File identification
MD5 4796647dd0f09e1f7c111f37707fe490
SHA1 87a53a6909e88683510b681c1adf9ef3d68c6748
SHA256 f3ec716bc19db9ec22977ace2af5a2136a69852638ce592500146925199266b6
ssdeep
98304:6Q7phWotzv/KTGwSWgZBOlk+PZBelWvoMIzP4NOBtIjZUs8ke2Y5A:6QdPv/PwSWXkaZBehyNOHD

File size 5.1 MB ( 5356544 bytes )
File type Windows Installer
Magic literal
CDF V2 Document, Little Endian, Os: Windows, Version 5.2, Title: WeOnlyDo! wodFtpDLX.NET Component, Author: WeOnlyDo Software, Keywords: SSH SFTP FTP FTPS SSL File Transfer C# NET, Template: Intel

TrID Microsoft Windows Installer (86.8%)
Windows SDK Setup Transform Script (9.1%)
Microsoft Word document (old ver.) (2.7%)
Generic OLE2 / Multistream Compound File (1.1%)
Corel Photo Paint (0.0%)
Tags
msi signed

VirusTotal metadata
First submission 2016-02-09 07:25:10 UTC ( 3 years, 1 month ago )
Last submission 2016-02-09 07:25:10 UTC ( 3 years, 1 month ago )
File names wodFtpDLX.NET.msi
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!