» checkupdate.exe
Overview
Analysis
File Details

checkupdate.exe

Finger Power Technology Co., Ltd.

The executable checkupdate.exe has been detected as malware by 1 anti-virus scanner.

File name:

checkupdate.exe

Publisher:

Finger Power Technology Co., Ltd. (signed and verified)

MD5:

557d502418cfebdb44182ad92298fd47

SHA-1:

091ca9ec2fde4b616f4a9937aa441cac94f6c580

Scanner detections:

1 / 68

Status:

Malware

Analysis date:

1/12/2025 10:44:47 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

Threat.Win.Reputation.IMP

17.3.8.7

File size:

532.5 KB (545,246 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Documents and Settings\{user}\Local settings\temporary internet files\content.ie5\{random}\checkupdate.exe

Digital Signature

Signed by:

Finger Power Technology Co., Ltd.

Authority:

Symantec Corporation

Valid from:

5/31/2016 4:30:00 AM

Valid to:

7/1/2017 4:29:59 AM

Subject:

CN="Finger Power Technology Co., Ltd.", OU=Development, O="Finger Power Technology Co., Ltd.", L=Beijing, S=Beijing, C=CN

Issuer:

CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

2EC9B6209E7B6AC9D3A4DB1DC33852F3

File PE Metadata

Compilation timestamp:

7/13/2016 7:12:10 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

Entry address:

0x5D000

Entry point:

68, A9, 94, 01, 00, 59, 68, 24, D0, 45, 00, 5E, 90, 90, 68, 98, 05, 00, 00, 5A, 90, 90, FF, 34, 32, 31, 0C, 24, 8F, 04, 32, 4A, 83, EA, 03, 90, 75, F0, 90, 90, 41, E9, 00, 00, A9, 94, 01, 00, A9, 94, 41, 00, 35, C5, 01, 00, 49, 0F, 04, 00, 77, 35, 04, 00, A9, 24, 03, 00, A8, 94, 01, 00, B9, E4, 41, 00, 9B, 84, 43, 00, B1, 84, 43, 00, 31, 5D, 00, 00, 99, 84, 03, 00, BF, 84, 03, 00, B9, CC, 01, 00, 99, 84, 03, 00, BF, 84, 03, 00, A9, 94, 01, 00, A9, 94, 01, 00, A9, 94, 01, 00, A9, 94, 01, 00, A9, 94, 01, 00... 
[+]

Entropy:

6.9518

Code size:

21 KB (21,504 bytes)

Remove checkupdate.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.