home

epix.exe

ART PLUS Inc.

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘ePix Wallpaper’.
Publisher:
Art Plus d.o.o., Zagreb, Croatia  (signed by ART PLUS Inc.)

Version:
6.0.0.598

MD5:
8fd043c85f422b0d48c613e1b3056be2

SHA-1:
ffe4937649595406964ad86cdc8b219f9298063d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/2/2024 5:26:55 PM UTC  (today)

File size:
4.5 MB (4,690,824 bytes)

Product version:
6.0

Copyright:
Copyright © 1997-2010 Art Plus d.o.o., Zagreb

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\documents and settings\marta\programs\art plus\epix\epix.exe

Digital Signature
Signed by:
ART PLUS Inc.

Authority:
The USERTRUST Network

Valid from:
8/11/2010 2:00:00 AM

Valid to:
8/11/2013 1:59:59 AM

Subject:
CN=ART PLUS Inc., O=ART PLUS Inc., STREET=Kapelska 5, L=Zagreb, S=HR, PostalCode=10000, C=HR

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
40F6AFA8F36CD5888E94F4859C354711

File PE Metadata
Compilation timestamp:
12/13/2010 6:13:20 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:PpUhK2DDcj+ui9rhlamtPALVXXDpLt8ugXPrsu:PIDF9famtYhXVKQu

Entry address:
0x2C3A54

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, 44, 5F, 6B, 00, E8, E7, 79, D4, FF, 8B, 1D, 78, F3, 6C, 00, 8B, 03, E8, 0A, C6, E5, FF, 8B, 03, BA, 88, 3B, 6C, 00, E8, 36, C0, E5, FF, 8B, 03, 33, D2, E8, F1, E1, E5, FF, 8B, 03, C6, 40, 5B, 00, 33, D2, B8, 88, 3B, 6C, 00, E8, EB, A9, E6, FF, 84, C0, 0F, 84, C7, 00, 00, 00, E8, 0E, 13, E7, FF, 8B, 0D, 38, F6, 6C, 00, 8B, 03, 8B, 15, B4, 22, 6B, 00, E8, DB, C5, E5, FF, 8B, 0D, EC, E9, 6C, 00, 8B, 03, 8B, 15, 70, 15, 6B, 00, E8, C8, C5, E5, FF, 8B, 0D, 3C, EF, 6C, 00, 8B, 03...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
2.8 MB (2,892,288 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
ePix Wallpaper

Command:
"C:\documents and settings\marta\programs\art plus\epix\epix.exe" \a


Scan epix.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.