home

istaria.exe

Virtrium LLC

It runs as a scheduled task under the Windows Task Scheduler.
Publisher:
Virtrium LLC  (signed and verified)

MD5:
3c35059aa41760b33d28a848e3c06d9e

SHA-1:
76d1558a79cbfe8947622e22f3655ad27f1e17dd

SHA-256:
5a0e1cee701a5fa77c45064a3222640eb7fcb2b36eacc549e821fea8384221e4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 1:56:44 AM UTC  (today)

File size:
5.3 MB (5,589,096 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\istaria\istaria.exe

Digital Signature
Signed by:
Virtrium LLC

Authority:
COMODO CA Limited

Valid from:
3/6/2013 4:00:00 PM

Valid to:
3/7/2014 3:59:59 PM

Subject:
CN=Virtrium LLC, O=Virtrium LLC, STREET="461 W Apache Trail, #117", L=Apache Junction, S=AZ, PostalCode=85120, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00F396D330408AC434121FC55C3A697AE6

File PE Metadata
Compilation timestamp:
12/12/2013 9:49:36 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
98304:Vvrjv50LDtQrUZElNd6XiB7m3G5Aph+zZgOAaJ2zh2V3MyZQ5zbF:Vvrjv5uDtQrUZElNd6XiB+gAT+DAeV3S

Entry address:
0x372B6E

Entry point:
E8, 71, 04, 00, 00, E9, 39, FD, FF, FF, 3B, 0D, B0, 8B, 8A, 00, 75, 02, F3, C3, E9, F1, 04, 00, 00, FF, 74, 24, 10, FF, 74, 24, 10, FF, 74, 24, 10, FF, 74, 24, 10, 68, 78, 2B, 77, 00, 68, B0, 8B, 8A, 00, E8, D6, 05, 00, 00, 83, C4, 18, C3, CC, CC, CC, CC, CC, CC, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 0F, 03, C1, 1B, C9, 0B, C1, 59, E9, 1A, FC, FF, FF, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 07, 03, C1, 1B, C9, 0B, C1, 59, E9, 04, FC, FF, FF, FF, 25, 24, 68, 7B, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC...
 
[+]

Entropy:
6.4976

Code size:
3.7 MB (3,887,104 bytes)

Scheduled Task
Task name:
{2B840A74-B39B-4D73-AC07-5B1278CC1678}

Trigger:
Registration (Runs on registration)


Scan istaria.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.