home

8i8v2y8s1j1u.exe

Intel Capability Licensing Service Interface

Intel Corporation

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘8i8V2y8s1j1U’.
Publisher:
Intel(R) Corporation  (signed by Intel Corporation)

Product:
Intel(R) Capability Licensing Service Interface

Version:
1.24.738.1

MD5:
3ceac1ba963c9050d2c3fc38c99b2611

SHA-1:
4b68d8995d9b292f5f42d244a496c9016a5e3705

SHA-256:
e02c4cd34858281652988e312250c05bdafb1c5eeb9efab095191075830835c0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 4:48:00 AM UTC  (today)

File size:
7.6 MB (7,934,688 bytes)

Product version:
1.24.738.1

Copyright:
(C) Copyright Intel(R) Corporation

File type:
Executable application (Win32 EXE)

Language:
Italiano (Itália)

Common path:
C:\Program Files\8n8k3t2i3e4j6h2w\8i8v2y8s1j1u.exe

Digital Signature
Signed by:
Intel Corporation

Authority:
Intel Corporation

Valid from:
4/6/2015 9:07:10 AM

Valid to:
12/31/2039 9:59:59 PM

Subject:
CN=Intel Corporation

Issuer:
CN=Intel Corporation

Serial number:
911DF508A71B67A846632518D49AE979

File PE Metadata
Compilation timestamp:
5/11/2015 9:18:49 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:/I8WFHjM+HfOATo1Z8jGzs5kDw7vw9Paffm14S5W9sdAubnPFSltFKyY8M:wT4+HfOATo1ZEGQ5kDEY9Paffm14S5kY

Entry address:
0x7286E3

Entry point:
E9, 4F, 28, FF, FF, 17, 04, BC, 45, 2D, 74, BE, 2C, 53, C0, E4, 87, EA, E1, 19, 08, 90, D1, 19, A8, 70, A5, BD, CC, D4, 31, A9, 24, FC, AD, 15, 88, 80, 79, E1, DC, 54, 11, 6B, 05, 39, F4, 2A, 34, A6, 9F, 1B, 17, 43, CF, FE, B7, 04, 2E, 6C, 74, C5, 5D, 69, 11, 6E, 5E, D3, 17, F5, 2F, 7F, 11, 59, F3, C8, CF, 51, 7D, B2, 97, 23, AD, 54, C1, 30, DC, 8C, 6D, 57, EE, C6, DC, 38, 23, 7F, BE, 18, 86, 29, B3, F8, 98, EE, CD, 29, F7, B0, AE, 01, B4, 3E, 8A, 1E, 03, 39, 01, 0E, 85, 8A, 94, 14, 8A, D2, 3D, 41, 9C, E9...
 
[+]

Packer / compiler:
tElock 0.99 - 1.0 private

Code size:
3.2 MB (3,369,984 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
8i8V2y8s1j1U

Command:
C:\Program Files\8n8k3t2i3e4j6h2w\8i8v2y8s1j1u.exe


herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.