home

ConnectorConfig.exe

Citrix VDI-in-a-Box

Citrix Systems Inc.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘vdiHVConnectorReadMe’.
Publisher:
Citrix Systems, Inc  (signed by Citrix Systems Inc.)

Product:
Citrix VDI-in-a-Box

Description:
Citrix VDI-in-a-Box Hyper-V Connector Config

Version:
5.4.0.0

MD5:
d4688bba3bfa8e2ec0ef1fb14aa3d22f

SHA-1:
97c20bc8a544c5f1ce20c1c1e3490daf9b93e787

SHA-256:
f8e0dee5f9871f4c67f5af5715c9721bdfd09767bcd200bbf40ba44df0e07af1

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 11:40:32 AM UTC  (today)

File size:
1018.6 KB (1,043,064 bytes)

Product version:
5.4.0.0

Copyright:
Citrix Systems, Inc. 2013

Original file name:
ConnectorConfig.exe

File type:
Executable application (Win64 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\citrix\vdi\hvconnector\connectorconfig.exe

Digital Signature
Signed by:
Citrix Systems Inc.

Authority:
GoDaddy.com, Inc.

Valid from:
6/18/2013 9:16:32 PM

Valid to:
4/26/2016 3:37:51 PM

Subject:
CN=Citrix Systems Inc., O=Citrix Systems Inc., L=Santa Clara, S=CA, C=US

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
27A9FA0AA154AE

File PE Metadata
Compilation timestamp:
11/1/2013 11:52:58 AM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows Console

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:f35GdZqexKYoz3cCbV63GSb6HC6ft22FsN5Hcd48yZyNaS5qsr0E2I4WhGsWMZaP:RGdI1xzsCbV62Suf82F4ZkL0E8Whd00U

Entry point:
4D, 5A, 90, 00, 03, 00, 00, 00, 04, 00, 00, 00, FF, FF, 00, 00, B8, 00, 00, 00, 00, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 80, 00, 00, 00, 0E, 1F, BA, 0E, 00, B4, 09, CD, 21, B8, 01, 4C, CD, 21, 54, 68, 69, 73, 20, 70, 72, 6F, 67, 72, 61, 6D, 20, 63, 61, 6E, 6E, 6F, 74, 20, 62, 65, 20, 72, 75, 6E, 20, 69, 6E, 20, 44, 4F, 53, 20, 6D, 6F, 64, 65, 2E, 0D, 0D, 0A, 24, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
4.4242

Code size:
717 KB (734,208 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
vdiHVConnectorReadMe

Command:
"C:\Program Files\citrix\vdi\hvconnector\connectorconfig.exe" readme 2


Scan ConnectorConfig.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.