home

mystart.exe

myStart

Limited Liability Company

The application mystart.exe by Limited Liability Company has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
iTVA LLC  (signed by Limited Liability Company )

Product:
myStart

Version:
1.0.0.80

MD5:
4ff82a7d86be2ae558f3abf430a9765d

SHA-1:
e7ed2d481f68ff5c2a3543cc52943350679a5c11

SHA-256:
2223661e716c24371ba70a7d75d098e815e108774f119b6f3d94ddee839702f1

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/14/2024 10:08:09 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.ITVA.LimitedL (M)
16.5.3.23

File size:
259.6 KB (265,824 bytes)

Product version:
1.0

Copyright:
iTVA LLC

Trademarks:
iTVA LLC

Original file name:
myStart

File type:
Executable application (Win64 EXE)

Common path:
C:\Program Files\mystartbutton\mystart.exe

Digital Signature
Signed by:
Limited Liability Company

Authority:
COMODO CA Limited

Valid from:
6/3/2015 4:00:00 AM

Valid to:
6/3/2016 3:59:59 AM

Subject:
CN="Limited Liability Company ""ITVA""", O="Limited Liability Company ""ITVA""", STREET="AVENUE PARKHOMENKO, 27/2", L=Saint-Petersburg, S=RU, PostalCode=194156, C=RU

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
414A774DAB0A67C1522D00EFA107265C

File PE Metadata
Compilation timestamp:
8/6/2014 10:52:03 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
3072:MzDqvkxbsm236FsJTnEgbZenQinXQ1yFx2JbhAoIPYeh91vAkZ38NZO0ZE/SDJ2n:MzecjLFOQgbZenQiXQ+Ml4IkyNZO0Zwn

Entry address:
0xCFC0

Entry point:
55, 48, 83, EC, 70, 48, 8B, EC, 48, C7, 45, 68, 00, 00, 00, 00, 90, 48, 8D, 0D, 28, D2, FF, FF, E8, E3, B3, FF, FF, 90, 48, 8D, 0D, EB, 7F, 00, 00, 48, 33, D2, E8, E3, 7A, FF, FF, 48, 33, C0, 48, 83, 3D, D8, 7F, 00, 00, 00, 74, 0A, 48, 8B, 05, CF, 7F, 00, 00, 8B, 40, FC, 83, E8, 01, 89, 05, CB, 7F, 00, 00, 83, 3D, C4, 7F, 00, 00, 01, 7C, 26, 48, 8B, 05, B3, 7F, 00, 00, 48, 63, 0D, B4, 7F, 00, 00, 66, 83, 7C, 48, FE, 5C, 74, 10, 83, 2D, A5, 7F, 00, 00, 01, 83, 3D, 9E, 7F, 00, 00, 00, 75, DA, 90, 48, 8D, 0D...
 
[+]

Code size:
50.5 KB (51,712 bytes)

Remove mystart.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.