edptray.exe

Easy Driver Pro Device Detector

Probit Software LTD

The application edptray.exe by Probit Software has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It runs as a scheduled task under the Windows Task Scheduler triggered to execute each time a user logs in.
Publisher:
Probit Software LTD  (signed and verified)

Product:
Easy Driver Pro Device Detector

Version:
8.2.0.0

MD5:
40b0e95efcd2b64b275007f0e35b351d

SHA-1:
0e1b14de519f3763d39a346716ba7333ab5bffbd

SHA-256:
606ef8cd4ddc36cd4a9c9dd0027317a2ab14a5a5f802bb80038878220a04c43b

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/24/2024 2:03:18 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
17.2.13.2

File size:
958.3 KB (981,248 bytes)

Product version:
8.2.0

Copyright:
Probit Software LTD

Trademarks:
Probit Software LTD

Original file name:
EDPTray

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\probit software\easy driver pro\edptray.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
12/1/2014 10:00:00 PM

Valid to:
1/31/2016 9:59:59 PM

Subject:
CN=Probit Software LTD, O=Probit Software LTD, L=Herzeliya, S=Sharon, C=IL

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1B3175B26FDFB1851AB60A5CCDF868C5

File PE Metadata
Compilation timestamp:
6/19/1992 7:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x5873C

Entry point:
55, 8B, EC, 83, C4, F0, B8, 24, 85, 45, 00, E8, 58, D6, FA, FF, 68, B8, 87, 45, 00, 6A, 00, 68, 01, 00, 1F, 00, E8, 07, DA, FA, FF, 85, C0, 75, 4F, 68, B8, 87, 45, 00, 6A, 00, 6A, 00, E8, 4D, D8, FA, FF, A1, A8, A0, 45, 00, 8B, 00, E8, 75, 9B, FF, FF, A1, A8, A0, 45, 00, 8B, 00, BA, C8, 87, 45, 00, E8, 5C, 97, FF, FF, 8B, 0D, 9C, A1, 45, 00, A1, A8, A0, 45, 00, 8B, 00, 8B, 15, 80, 6B, 45, 00, E8, 64, 9B, FF, FF, A1, A8, A0, 45, 00, 8B, 00, E8, D8, 9B, FF, FF, E8, 17, B7, FA, FF, 00, 00, 00, 45, 44, 50, 54...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
350 KB (358,400 bytes)

Scheduled Task
Task name:
Easy Driver Pro Schedule

Trigger:
Logon (Runs on logon)


Remove edptray.exe - Powered by Reason Core Security