home

PatchMyPC.exe

Patch My PC

Patch My PC

It runs as a scheduled task under the Windows Task Scheduler triggered daily at a specified time. The file has been seen being downloaded from download1us.softpedia.com and multiple other hosts.
Publisher:
www.patchmypc.net  (signed by Patch My PC)

Product:
Patch My PC

Version:
2.3.6.5

MD5:
3cdf4a3827195f8a73e2a8f2ea0be8fc

SHA-1:
a4a48f9cefafa319bddb27858e7e58af1f5b481f

SHA-256:
c9e83e486b86c0d31736d7840027db2b10be70428543b5ab508bb960726d5323

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 2:51:25 AM UTC  (today)

File size:
401.1 KB (410,696 bytes)

Product version:
2.3.6.5

Copyright:
Copyright © Justin Chalfant

Original file name:
PatchMyPC.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\patchmypc\patchmypc.exe

Digital Signature
Signed by:
Patch My PC

Authority:
COMODO CA Limited

Valid from:
1/5/2014 6:00:00 PM

Valid to:
1/6/2015 5:59:59 PM

Subject:
CN=Patch My PC, O=Patch My PC, STREET=19151 Cottonwood Dr, L=Parker, S=Colorado, PostalCode=80138, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
1885CB3B9AD27F9858616D5881C51923

File PE Metadata
Compilation timestamp:
1/14/2014 11:14:07 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:FY4efBg80P0O0I4PuSAaejJHJQ6lIjP5ITgG0jvhhND5FGpLvBY9LCdDzq/gy9No:SEsbAaeBJAoDO/r/rEueEfimsaLDbC

Entry address:
0x60FDE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 1F, 19, D6, 52, 00, 00, 00, 00, 02, 00, 00, 00, 1C, 01, 00, 00, 1C, 20, 06, 00, 1C, F4, 05, 00, 52, 53, 44, 53, B9, AA, 2B, 19, BF, 11, C9, 4D, 99, 76, E3, A2, ED, A0, 01, FE, 01, 00, 00, 00, 43, 3A, 5C, 55, 73, 65, 72, 73, 5C, 6A, 75, 63, 68, 61, 6C, 66, 61, 5C, 44, 65, 73, 6B, 74, 6F, 70, 5C, 50, 61, 74, 63, 68, 4D, 79, 50, 43, 5F, 32, 2E, 33, 2E, 36, 2E...
 
[+]

Entropy:
6.2987

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
380 KB (389,120 bytes)

Scheduled Task
Task name:
Patch My PC

Trigger:
Daily (Runs daily at 9:04 AM)


The file PatchMyPC.exe has been seen being distributed by the following 3 URLs.

http://download1us.softpedia.com/dl/f84e1a5d65dc16f1dab9d6d74d2d9550/52f44b42/100184684/software/.../PatchMyPC.exe

http://www.patchmypc.net/PatchMyPC.exe

http://patchmypc.net/PatchMyPC.exe

Scan PatchMyPC.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.