» innovativesolutions_monitor_svr.exe
Overview
Analysis
File Details
Behaviors (1)

innovativesolutions_monitor_svr.exe

Innovative Solutions Grup SRL

The executable innovativesolutions_monitor_svr.exe has been detected as malware by 3 anti-virus scanners. It runs as a separate (within the context of its own process) windows Service named “Innovative Solutions Service Monitor”.

File name:

Publisher:

Innovative Solutions Grup SRL (signed and verified)

MD5:

16086fd049c46f0f666f4c706c61b4f8

SHA-1:

2197bb0d62076eac795c7506d32643fc879fd00c

SHA-256:

1aefd24d11062bef26d385b778a113652824f4d72fdf314864e9a43a416e2755

Scanner detections:

3 / 68

Status:

Malware

Analysis date:

1/12/2025 8:53:30 PM UTC (today)

Scan engine

Detection

Engine version

ESET NOD32

Win32/Floxif.H virus

6.3.12010.0

F-Prot

W32/Floxif.B

4.6.5.141

F-Secure

Win32.Floxif.A

5.15.154

File size:

1.1 MB (1,142,799 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\common files\innovative solutions\advanced uninstaller\innovativesolutions_monitor_svr.exe

Digital Signature

Signed by:

Innovative Solutions Grup SRL

Authority:

Symantec Corporation

Valid from:

3/19/2015 6:00:00 AM

Valid to:

5/18/2016 5:59:59 AM

Subject:

CN=Innovative Solutions Grup SRL, O=Innovative Solutions Grup SRL, L=Bucharest, S=Bucharest, C=RO

Issuer:

CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

6CCC9ABD5046DE5246F5CD620FC3DEBB

File PE Metadata

Compilation timestamp:

6/20/1992 4:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0xE1A5C

Entry point:

E9, 46, AA, F6, FF, F0, 53, B8, 84, 17, 4E, 00, E8, E7, 53, F2, FF, A1, 00, 3A, 4E, 00, 8B, 00, 8B, 10, FF, 52, 34, 8B, 0D, B8, 3A, 4E, 00, A1, 00, 3A, 4E, 00, 8B, 00, 8B, 15, 94, 08, 4E, 00, 8B, 18, FF, 53, 30, A1, 00, 3A, 4E, 00, 8B, 00, 8B, 10, FF, 52, 38, 5B, E8, 65, 2A, F2, FF, 90, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

6.7533

Packer / compiler:

Xtreme-Protector v1.05

Code size:

899 KB (920,576 bytes)

Service

Display name:

Innovative Solutions Service Monitor

Service name:

InnovativeSolutions_monitor

Type:

Win32OwnProcess

Remove innovativesolutions_monitor_svr.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.