boinctray.exe

BOINC client

University of California, Berkeley

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘boinctray’.
Publisher:
Space Sciences Laboratory  (signed by University of California, Berkeley)

Product:
BOINC client

Description:
BOINC System Tray for Windows

Version:
6.4.5

MD5:
106b033a4f4edc44f1bc0a700639ef2b

SHA-1:
80f6ab7528e601e7814a239900c923324bde7699

SHA-256:
3075bc70592be6e707be782794f26fc11d9eb457efcee55126281330da8ab898

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/18/2024 1:33:02 AM UTC  (today)

File size:
54.8 KB (56,064 bytes)

Product version:
6.4.5

Copyright:
© 2003-2008 University of California

Original file name:
boincmgr.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\Program Files\boinc\boinctray.exe

Digital Signature
Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
12/20/2006 4:00:00 PM

Valid to:
1/5/2009 3:59:59 PM

Subject:
CN="University of California, Berkeley", OU=Space Sciences Laboratory, O="University of California, Berkeley", L=Berkeley, S=California, C=US

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
77C52FEFE32B5A1D31224E33C7944FF1

File PE Metadata
Compilation timestamp:
12/9/2008 7:37:34 AM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
768:nUclAmJlffvmzUY6hXS3wrvJTUnaWHXmRcfpTe74ipLTDkvnALHK:UclVHnvNh2CvJQn1WRcf07dLPkvnAO

Entry address:
0x1830

Entry point:
48, 83, EC, 28, E8, 67, 1F, 00, 00, 48, 83, C4, 28, E9, 0E, FD, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 40, 53, 48, 83, EC, 30, 48, 8B, D9, B9, 0E, 00, 00, 00, E8, 2D, 24, 00, 00, 90, 48, 8B, 43, 08, 48, 85, C0, 74, 47, 48, 8B, 0D, DC, B8, 00, 00, 48, 89, 4C, 24, 20, 48, 8D, 15, C8, B8, 00, 00, 48, 85, C9, 74, 1E, 48, 39, 01, 75, 0F, 48, 8B, 41, 08, 48, 89, 42, 08, E8, 49, 24, 00, 00, EB, 0A, 48, 8B, D1, 48, 89, 4C, 24, 20, EB, DD, 48, 8B, 4B, 08, E8, 34, 24, 00, 00, 48, C7, 43, 08...
 
[+]

Entropy:
6.0695

Code size:
28 KB (28,672 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
boinctray

Command:
"C:\Program Files\boinc\boinctray.exe"


Scan boinctray.exe - Powered by Reason Core Security