home

startechupdate.exe

FieldOne Systems, LLC.

Publisher:
FieldOne Systems, LLC.  (signed and verified)

MD5:
db6e12cec6b33a656490b91604df1ada

SHA-1:
cc2680fb617ae5510c1910ef33fa4d2103ccedc8

SHA-256:
5ca448bfebb62c6c3c9efc0e5e540d3b3ef93d8ea495927acad91af519acb02f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/25/2024 12:52:12 AM UTC  (today)

File size:
3.3 MB (3,465,328 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\{da4eadf0-d669-42bd-a177-9d0704ef0db6}\offline\2e224f50\d72c098a\startechupdate.exe

Digital Signature
Signed by:
FieldOne Systems, LLC.

Authority:
Thawte, Inc.

Valid from:
1/25/2011 4:00:00 PM

Valid to:
1/28/2012 3:59:59 PM

Subject:
CN="FieldOne Systems, LLC.", O="FieldOne Systems, LLC.", L=Suffern, S=New York, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
50C2591808B7C4C26580D5470596FE75

File PE Metadata
Compilation timestamp:
2/2/2011 12:30:53 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:g1530fQe6a4IyAQqUpfLHmugyxXNEFd+6EAwrTMXulT9HY7gY:pPyAipfLmME92kXurMD

Entry address:
0x2A6DE4

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, A8, 20, 6A, 00, E8, 2B, 30, D6, FF, 8B, 1D, F8, 5B, 6D, 00, 6A, 02, 6A, 00, 6A, 00, 6A, 00, 6A, 00, 68, E4, 6E, 6A, 00, 6A, 00, 33, C9, BA, F8, 6E, 6A, 00, B8, F8, 6E, 6A, 00, E8, 17, 10, E5, FF, 84, C0, 74, 56, 8B, 0D, D8, 60, 6D, 00, A1, E8, 60, 6D, 00, 8B, 00, 8B, 15, A0, EA, 67, 00, E8, 03, 0F, E5, FF, 8B, 0D, 98, 60, 6D, 00, A1, E8, 60, 6D, 00, 8B, 00, 8B, 15, F4, 87, 67, 00, E8, EB, 0E, E5, FF, 8B, 0D, 34, 5E, 6D, 00, A1, E8, 60, 6D, 00, 8B, 00, 8B, 15, C8, 23, 59, 00...
 
[+]

Entropy:
6.5390

Developed / compiled with:
Microsoft Visual C++

Code size:
2.6 MB (2,776,064 bytes)

Scan startechupdate.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.