RVAgTray.EXE

RemoteView Agent Tray Application

Rsupport Co., Ltd.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘RemoteView5 Tray’.
Publisher:
Rsupport Co., Ltd.  (signed and verified)

Product:
RemoteView Agent Tray Application

Version:
5, 0, 1, 1

MD5:
c0d1c2ca671c722bde9a0c566496c11d

SHA-1:
d802bf3796555561ec8b89660db73d521e063591

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 12:25:07 PM UTC  (today)

File size:
297.3 KB (304,448 bytes)

Product version:
5, 0, 1, 1

Copyright:
Copyright (C) 2008 ~ 2010 RSUPPORT CO., LTD. All rights reserved.

Original file name:
RVAgTray.EXE

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\rsupport\remoteview 5.0\agent\rvagtray.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
5/3/2010 9:00:00 AM

Valid to:
8/2/2013 8:59:59 AM

Subject:
CN="Rsupport Co., Ltd.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Rsupport Co., Ltd.", L=Songpa-gu, S=Seoul, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6779E3DEFE24F0FC6EA3861596E10F64

File PE Metadata
Compilation timestamp:
4/4/2011 11:38:46 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x13331

Entry point:
55, 8B, EC, 6A, FF, 68, 40, 6C, 41, 00, 68, C0, 31, 41, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, FF, 15, 58, 55, 41, 00, 59, 83, 0D, 7C, D0, 41, 00, FF, 83, 0D, 80, D0, 41, 00, FF, FF, 15, 5C, 55, 41, 00, 8B, 0D, 70, D0, 41, 00, 89, 08, FF, 15, 60, 55, 41, 00, 8B, 0D, 6C, D0, 41, 00, 89, 08, A1, 64, 55, 41, 00, 8B, 00, A3, 78, D0, 41, 00, E8, 1D, 01, 00, 00, 39, 1D, 00, CB, 41, 00, 75, 0C, 68, BA, 34, 41, 00, FF, 15, 68, 55...
 
[+]

Entropy:
3.5194

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
80 KB (81,920 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
RemoteView5 Tray

Command:
"C:\Program Files\rsupport\remoteview 5.0\agent\rvagtray.exe" \background


Scan RVAgTray.EXE - Powered by Reason Core Security