home

SentinelAgent.exe

Sentinel Agent

Sentinel Labs, Inc.

It runs as a separate (within the context of its own process) windows Service named “SentinelAgent”.
Publisher:
SentinelOne, Inc.  (signed by Sentinel Labs, Inc.)

Product:
Sentinel Agent

Description:
SentinelOne Kernel Monitor

Version:
1.6.2008.0

MD5:
12226045b09a2de841709714634b0ccd

SHA-1:
baa44e4cd2ab4fd31f9beddcc5f34a414fdbfe8b

SHA-256:
1a57c479e9ba9df2092525b50e592c1c80b7834bf153402eb97cfff6b311daea

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 4:39:54 PM UTC  (today)

File size:
4.8 MB (5,003,384 bytes)

Product version:
1.6.2008.0

Copyright:
SentinelOne, Inc.

Original file name:
SentinelAgent.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\Program Files\sentinelone\sentinel agent 1.6.2008.0\sentinelagent.exe

Digital Signature
Signed by:
Sentinel Labs, Inc.

Authority:
DigiCert Inc

Valid from:
7/4/2015 5:00:00 PM

Valid to:
12/30/2015 4:00:00 AM

Subject:
CN="Sentinel Labs, Inc.", O="Sentinel Labs, Inc.", L=Palo Alto, S=California, C=US, PostalCode=94306, STREET=2500 El Camino Real, SERIALNUMBER=5278570, OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, OID.2.5.4.15=Private Organization

Issuer:
CN=DigiCert EV Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
03292AD5BA34EFCC86534C31F725BB85

File PE Metadata
Compilation timestamp:
11/10/2015 4:00:18 AM

OS version:
6.0

OS bitness:
Win64

Subsystem:
Windows Console

Linker version:
12.0

CTPH (ssdeep):
49152:A6Lr/TvO8QVYxKqMm1f1DiSeP/WA13GzoJdmR/4cxcAQIqjCO6MU7re2UX0HnD3e:A6ZGX0ZZHlUu5dSOStq5zi

Entry address:
0x2468B8

Entry point:
48, 83, EC, 28, E8, 9F, D3, 01, 00, 48, 83, C4, 28, E9, 42, FE, FF, FF, CC, CC, 40, 53, 48, 83, EC, 20, 48, 8B, D9, FF, 15, 85, 3E, 0B, 00, B9, 01, 00, 00, 00, 89, 05, AA, BE, 23, 00, E8, 15, D5, 01, 00, 48, 8B, CB, E8, 81, B4, 00, 00, 83, 3D, 96, BE, 23, 00, 00, 75, 0A, B9, 01, 00, 00, 00, E8, FA, D4, 01, 00, B9, 09, 04, 00, C0, 48, 83, C4, 20, 5B, E9, 3F, B4, 00, 00, CC, CC, CC, 48, 89, 4C, 24, 08, 48, 83, EC, 38, B9, 17, 00, 00, 00, E8, 33, AD, 04, 00, 85, C0, 74, 07, B9, 02, 00, 00, 00, CD, 29, 48, 8D...
 
[+]

Entropy:
6.1567

Code size:
3 MB (3,114,496 bytes)

Service
Display name:
SentinelAgent

Description:
SentinelOne Endpoint Protection Agent

Type:
Win32OwnProcess


Scan SentinelAgent.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.