KillProcess.EXE

KillProcess Application

Orange Lamp Software Solutions

Publisher:
Orange Lamp Software Solutions

Product:
KillProcess Application

Version:
2, 44, 0, 0

MD5:
90d85bd925f302f244875e5b8df313c9

SHA-1:
eb2b9e39c06a6bb639fee6650e31946a3d0788ff

SHA-256:
511b478937f6228678a6973f5ecbf6e87d45bb7ffc4a9d81225c715d366d6062

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/27/2024 4:53:19 AM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
W32.HfsAutoA
1.3.0.4923

ESET NOD32
Win32/KillProcess (variant)
8.9378

File size:
1.3 MB (1,318,400 bytes)

Product version:
2, 44, 0, 0

Copyright:
Copyright (C) 2009

Trademarks:
Freeware

Original file name:
KillProcess.EXE

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\killprocess\killprocess.exe

File PE Metadata
Compilation timestamp:
9/3/2009 2:22:09 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:1MvJEZkDDlmkk5nVyVGZv9n1hUHDfGcYUVzp:1QBDlml5VyVEFnrUHiTazp

Entry address:
0x3A19A

Entry point:
E8, 83, E0, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 6A, 00, FF, 75, 14, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, FC, E0, 00, 00, 83, C4, 14, 5D, C3, 8B, FF, 55, 8B, EC, 8B, 45, 08, 66, 8B, 08, 40, 40, 66, 85, C9, 75, F6, 2B, 45, 08, D1, F8, 48, 5D, C3, CC, CC, CC, CC, CC, 8B, 4C, 24, 04, F7, C1, 03, 00, 00, 00, 74, 24, 8A, 01, 83, C1, 01, 84, C0, 74, 4E, F7, C1, 03, 00, 00, 00, 75, EF, 05, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8B, 01, BA, FF, FE, FE, 7E, 03, D0, 83...
 
[+]

Entropy:
5.9781

Code size:
337.5 KB (345,600 bytes)

The file KillProcess.EXE has been discovered within the following program.

KillProcess 2.44  by Orange Lamp Software Solutions
orangelampsoftware.com
About 3% of users remove it
 
Powered by Should I Remove It?

The file KillProcess.EXE has been seen being distributed by the following 3 URLs.

Scan KillProcess.EXE - Powered by Reason Core Security