home

BIBLauncher.exe

Biztree Desktop Launcher

Biztree Inc.

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘BIBLauncher’.
Publisher:
Biztree Inc.  (signed and verified)

Product:
Biztree Desktop Launcher

Description:
Biztree Desktop Launcher Application

Version:
1, 0, 0, 0

MD5:
690fc1267e3591c307ce2e1441869065

SHA-1:
6bd37edbf99b426303cd284b60bddad1b68f7818

SHA-256:
9f1808b38102a303755c1b37a6eef0cde9f9b42fa8d6f39b55903e10a644b259

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 9:11:26 AM UTC  (today)

File size:
746.7 KB (764,648 bytes)

Product version:
1, 0, 0, 0

Copyright:
Copyright (C) 2009

Original file name:
BIBLauncher.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\biztree desktop\biblauncher.exe

Digital Signature
Signed by:
Biztree Inc.

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
7/1/2009 8:00:00 PM

Valid to:
5/6/2010 7:59:59 PM

Subject:
CN=Biztree Inc., OU=SECURE APPLICATION DEVELOPMENT, O=Biztree Inc., L=MONTREAL, S=QUEBEC, C=CA

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
3069F3B8DD854C32DB7FD3895A632D33

File PE Metadata
Compilation timestamp:
7/10/2009 9:27:03 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:sIQIQIQIk666k/0gHgR3J4pmzFbFX7qdagseA45jKQxsmzx8sgjGvQ6UQF1RE7dT:sIQIQIQIu0giJzbFDf45jKqsoCsgivJc

Entry address:
0x1BE95C

Entry point:
E8, 3B, FF, FF, FF, 05, C7, 7C, 00, 00, FF, E0, E8, 2F, FF, FF, FF, 05, 59, 9A, 00, 00, FF, E0, E8, 04, 00, 00, 00, FF, FF, FF, FF, 5E, C3, 00, D9, E1, 74, A7, D4, 95, C5, 96, FD, 27, 0A, 87, 1B, CB, 2E, F0, 01, 40, F0, 51, 1B, 09, 80, C0, D9, 4F, 85, 50, 79, 44, CC, 3B, EF, 0F, 8F, 4E, F4, C3, CE, 10, 96, C5, 25, B3, 3E, CF, 04, D3, 8E, A3, 20, 3D, 80, CF, FC, 92, 88, E4, 5F, 4E, 7B, 7D, 46, DC, B8, A7, 64, 5F, 00, 05, 24, A0, 44, 43, B8, F9, D8, 32, B0, 31, 88, 6E, AF, AA, 0E, FF, 57, F8, FD, 7B, FF, C6...
 
[+]

Entropy:
7.8000  (probably packed)

Code size:
544 KB (557,056 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
BIBLauncher

Command:
C:\Program Files\biztree desktop\biblauncher.exe


Scan BIBLauncher.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.