CSTray.exe

Clean Slate

Fortres Grand Corporation

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘CSTray’.
Publisher:
Fortres Grand Corporation  (signed and verified)

Product:
Clean Slate

Description:
CSTray Application

Version:
8.0.4800.0

MD5:
16611317553ff1b5e07d8b8fd8440e60

SHA-1:
e8ef2a8197cb938f1f20b863f872d0496561fd35

SHA-256:
64d7241639e5eb28e870c65017081717855512a4b7caf2a950feb64b594b0c63

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 1:29:18 AM UTC  (today)

File size:
335 KB (343,072 bytes)

Product version:
8.0.4800.0

Copyright:
Copyright © 2007-2015 Fortres Grand Corporation

Original file name:
CSTray.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\fortres grand\clean slate 10\cstray.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
2/18/2016 1:27:08 AM

Valid to:
2/5/2019 11:20:32 PM

Subject:
CN=Fortres Grand Corporation, O=Fortres Grand Corporation, STREET=900 Lincolnway E, L=Plymouth, S=Indiana, C=US, OID.1.3.6.1.4.1.311.60.2.1.2=Indiana, OID.1.3.6.1.4.1.311.60.2.1.3=US, SERIALNUMBER=1994110596, OID.2.5.4.15=Private Organization

Issuer:
CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121D3863B23309BAF975A133B65902F62A0

File PE Metadata
Compilation timestamp:
3/16/2016 9:13:14 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

CTPH (ssdeep):
3072:lWKdXQMQISBF5Bfs4SLxTZbhVujLKOVPYhLmzVDAuXy8xyEKGkwlvJDV2uMzQ0nA:ld0xu4YThaPYhLy/5hobzBanJ

Entry address:
0xE11C

Entry point:
E8, D9, 07, 00, 00, E9, 80, FE, FF, FF, FF, 25, 74, 72, 42, 00, 8B, 4D, F4, 64, 89, 0D, 00, 00, 00, 00, 59, 5F, 5F, 5E, 5B, 8B, E5, 5D, 51, F2, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, EC, 51, 43, 00, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, F2, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, EC, 51, 43, 00, 33, C5, 50, 89, 65, F0, FF, 75, FC, C7, 45...
 
[+]

Code size:
151 KB (154,624 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
CSTray

Command:
C:\Program Files\fortres grand\clean slate 10\cstray.exe


Scan CSTray.exe - Powered by Reason Core Security