binslauncher.exe

1UP Industries LLC

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Bins’.
Publisher:
1UP Industries LLC  (signed and verified)

MD5:
1200d1cfd6932dc4c435ca9c3a79a5b4

SHA-1:
32c3789bd1b89b8b9ec6cf8c750bdf39339aa2ef

SHA-256:
d39035f6912471fcdde63c7ab962c6d6e89928fafff149070bb3effb0fb2c302

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 4:35:49 PM UTC  (today)

File size:
1.1 MB (1,141,984 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\1upindustries\bins\binslauncher.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
7/20/2015 1:00:00 AM

Valid to:
7/20/2017 12:59:59 AM

Subject:
CN=1UP Industries LLC, O=1UP Industries LLC, POBox=48104, STREET="303 S Main St, Apt 202", L=Ann Arbor, S=Michigan, PostalCode=48104, C=US

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
7079E02E59503DF69D1C817C36D03BB4

File PE Metadata
Compilation timestamp:
6/19/2016 9:44:59 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
12288:9bP2wyI36x5E/SA8YHOfEhqWVybqbZHWQJPu2sa/5TbYbI7Q7l:9bSfEhqWVylmW2saCbI07l

Entry address:
0x4CEE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
4.3681

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
11.5 KB (11,776 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Bins

Command:
"C:\Program Files\1upindustries\bins\binslauncher.exe" \startup


Scan binslauncher.exe - Powered by Reason Core Security