home

startmenulaunch.exe

ForensiT Limited

Publisher:
ForensiT Limited  (signed and verified)

MD5:
501dac0cac971992c718f7f96ade09b0

SHA-1:
d5a68899b8e29164939e1d81b2f785e7277b7f1e

SHA-256:
888a0bf2036ff5fdff49069965e2819e62855395bf8484625a3d53936ef32a03

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 10:42:53 PM UTC  (today)

File size:
111.6 KB (114,256 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\forensit\user profile manager\startmenulaunch.exe

Digital Signature
Signed by:
ForensiT Limited

Authority:
VeriSign, Inc.

Valid from:
4/18/2012 8:00:00 PM

Valid to:
5/14/2015 7:59:59 PM

Subject:
CN=ForensiT Limited, OU=Software Development, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=ForensiT Limited, L=Chatham, S=Kent, C=GB

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
14BA9247F5B71C499CAB1806B4C22C82

File PE Metadata
Compilation timestamp:
4/18/2007 6:24:46 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
1536:/TMbB/ypHDnK5izoSrvwpb1HdNi5/X/up15W9QPRaB+pvUg1sQy+b+4fDiBKS0k:/TMbcp+TDrHi5/Wp1w8h0Qv6UuJ0k

Entry address:
0x1407

Entry point:
E8, 2A, 19, 00, 00, E9, 17, FE, FF, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, D8, AD, 40, 00, 89, 0D, D4, AD, 40, 00, 89, 15, D0, AD, 40, 00, 89, 1D, CC, AD, 40, 00, 89, 35, C8, AD, 40, 00, 89, 3D, C4, AD, 40, 00, 66, 8C, 15, F0, AD, 40, 00, 66, 8C, 0D, E4, AD, 40, 00, 66, 8C, 1D, C0, AD, 40, 00, 66, 8C, 05, BC, AD, 40, 00, 66, 8C, 25, B8, AD, 40, 00, 66, 8C, 2D, B4, AD, 40, 00, 9C, 8F, 05, E8, AD, 40, 00, 8B, 45, 00, A3, DC, AD, 40, 00, 8B, 45, 04, A3, E0, AD, 40, 00, 8D, 45, 08, A3, EC, AD, 40, 00, 8B...
 
[+]

Entropy:
6.6022

Code size:
28 KB (28,672 bytes)

Scan startmenulaunch.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.