home

refreshnotificationarea.exe

McKinsey & Company

Publisher:
McKinsey & Company  (signed and verified)

MD5:
bc361a7bfc9bc6c2e13b7d9ccf3283a2

SHA-1:
45e3455c13f50132d6c54255ffc5cd1e0814afe2

SHA-256:
211ef95749b73a6216005f213359b8c2df0fd5983ba85df115ced3e03e4fd6f5

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 3:28:48 AM UTC  (today)

File size:
13.8 KB (14,096 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\altiris\altiris agent\agents\softwaremanagement\software delivery\{97142f4a-0da3-4f04-9970-7195b30aa16e}\cache\refreshnotificationarea.exe

Digital Signature
Signed by:
McKinsey & Company

Authority:
VeriSign, Inc.

Valid from:
5/5/2014 8:00:00 PM

Valid to:
6/4/2017 7:59:59 PM

Subject:
CN=McKinsey & Company, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=McKinsey & Company, L=New York, S=New York, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6782DACD00082675FFBC5ACEE61BC21B

File PE Metadata
Compilation timestamp:
12/8/2013 7:53:37 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
12.0

CTPH (ssdeep):
192:wwQwb5zPvll1hU6ItA39h8dI/nYe+PjPZrC0L+vIbuPr9ZCspE+TMQrs1bd6h:bQsvBGta8snYPLIYFeMd1bA

Entry address:
0x1450

Entry point:
E8, DC, 02, 00, 00, E9, 91, FE, FF, FF, 55, 8B, EC, FF, 15, 14, 20, 40, 00, 6A, 01, A3, 54, 33, 40, 00, E8, 4D, 05, 00, 00, FF, 75, 08, E8, 4B, 05, 00, 00, 83, 3D, 54, 33, 40, 00, 00, 59, 59, 75, 08, 6A, 01, E8, 33, 05, 00, 00, 59, 68, 09, 04, 00, C0, E8, 34, 05, 00, 00, 59, 5D, C3, 55, 8B, EC, 81, EC, 24, 03, 00, 00, 6A, 17, E8, 57, 05, 00, 00, 85, C0, 74, 05, 6A, 02, 59, CD, 29, A3, 38, 31, 40, 00, 89, 0D, 34, 31, 40, 00, 89, 15, 30, 31, 40, 00, 89, 1D, 2C, 31, 40, 00, 89, 35, 28, 31, 40, 00, 89, 3D, 24...
 
[+]

Entropy:
6.3785

Code size:
3 KB (3,072 bytes)

Scan refreshnotificationarea.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.