SoneraAvustaja.exe

Sonera Avustaja

TeliaSonera AB

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Sonera Avustaja 5.0’.
Publisher:
TeliaSonera AB  (signed and verified)

Product:
Sonera Avustaja

Version:
5, 0, 0, 0

MD5:
75905b3563d4f18836d8739dbdfd5d37

SHA-1:
1ada983878d1ca0c21761d4bd492dbefac1c750d

SHA-256:
d3c5283e97b23631a812821e7a389ce4a7678bfac582ea2ed26cd40c5dd680e1

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/25/2024 11:27:24 AM UTC  (today)

File size:
1.7 MB (1,777,968 bytes)

Product version:
5, 0, 0, 0

Copyright:
Copyright (C) 2013 TeliaSonera Finland Oyj

Original file name:
SoneraAvustaja.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\sonera avustaja\client\soneraavustaja.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
9/27/2013 3:00:00 AM

Valid to:
11/26/2016 1:59:59 AM

Subject:
CN=TeliaSonera AB, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=TeliaSonera AB, L=Göteborg, S=Västra Götaland, C=SE

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1F5EF5A391FC0240DA9E5007F2002726

File PE Metadata
Compilation timestamp:
11/22/2013 2:57:03 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:VlnR9shgpojkWZe2uXaK6bZTXYkgt3UznkUJt9EO:YGCX4aK69LYkgbUJjT

Entry address:
0x1FB70

Entry point:
E8, 23, 04, 00, 00, E9, 37, FD, FF, FF, 8B, FF, 55, 8B, EC, FF, 75, 14, FF, 75, 10, FF, 75, 0C, FF, 75, 08, 68, E6, F5, 41, 00, 68, 4C, 90, 45, 00, E8, 94, 04, 00, 00, 83, C4, 18, 5D, C3, CC, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 0F, 03, C1, 1B, C9, 0B, C1, 59, E9, 8A, 04, 00, 00, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 07, 03, C1, 1B, C9, 0B, C1, 59, E9, 74, 04, 00, 00, FF, 25, BC, 62, 44, 00, FF, 25, B8, 62, 44, 00, CC, CC, CC, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, F8, AA, 45, 00...
 
[+]

Code size:
276 KB (282,624 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Sonera Avustaja 5.0

Command:
"C:\Program Files\sonera avustaja\client\soneraavustaja.exe" \trayonly


Scan SoneraAvustaja.exe - Powered by Reason Core Security