GetSystemInfo.exe

GetSystemInfo

Kaspersky Lab

This is a setup program which is used to install the application. This is installed with multiple programs including Kaspersky Security Center Administration Console and Kaspersky PURE 2.0. The file has been seen being downloaded from support.kaspersky.com and multiple other hosts.
Publisher:
Kaspersky Lab  (signed and verified)

Product:
GetSystemInfo

Version:
4.01.0245

MD5:
0a60104ce3f19c90d3b14758456c265c

SHA-1:
16384f1561fb381bbdb6de85e45205567230f2ee

SHA-256:
9ca8760649ab12a146f60c0c96fc06869301e1d3a5acb4ed766c9a8568515c93

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 4:45:28 PM UTC  (today)

File size:
692.3 KB (708,960 bytes)

Product version:
4.01.0245

Copyright:
Copyright © Kaspersky Lab 1997-2012.

Trademarks:
Kaspersky Lab

Original file name:
GetSystemInfo.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\getsysteminfo.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
2/21/2011 1:00:00 AM

Valid to:
3/8/2012 12:59:59 AM

Subject:
CN=Kaspersky Lab, OU=Technical dept, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Kaspersky Lab, L=Moscow, S=Moscow, C=RU

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
11A30BCFB2E82AD71F541D1127ABD1F6

File PE Metadata
Compilation timestamp:
1/27/2012 3:09:58 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:3OnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnE:+nnnnnnnnnnnnnnnnnnnnnnnnnnnnnnE

Entry address:
0x1344

Entry point:
68, 34, B3, 42, 00, E8, EE, FF, FF, FF, 00, 00, 48, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 72, C0, B7, F6, 8C, DB, FB, 49, A2, F9, 46, 49, AD, DD, F8, 4A, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 47, 65, 74, 53, 79, 73, 74, 65, 6D, 49, 6E, 66, 6F, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, C0, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 10, 00, 00, 00, 30, 23, 78, C5, 2C, 0F, BE, 44, 89, 63, 46, 88, FB, FC, 50, 48, 01, 00, 00, 00, A0, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
644 KB (659,456 bytes)

The file GetSystemInfo.exe has been discovered within the following programs.

Publisher's description - “Kaspersky Internet Security 2013 delivers premium PC protection from all Internet threats, ensuring you're always safe as you use the web to bank, shop, surf, social network.”
www.kaspersky.com/downloads/productupdates/endpoint-security-windows
10% remove it
Kaspersky PURE 2.0  by Kaspersky Lab
Publisher's description - “Ultimate PC Protection - Kaspersky PURE 2.0 Total Security delivers the ultimate PC protection for your home, combining everything you need to ensure the security of your PCs, identity, passwords, photos and more.”
3% remove it
Publisher's description - “The Kaspersky Security Center Administration Console enables you to remotely work with the Kaspersky Security Center Administration Server: view reports, modify settings, run tasks, etc. The Administration Console is not the only method of managing a remote server.”
www.kaspersky.com/administration_kit
5% remove it
 
Powered by Should I Remove It?

The file GetSystemInfo.exe has been seen being distributed by the following 3 URLs.