Traffic Exchange Updater.exe

Traffic Exchange

MICROLEAVES LTD

The application Traffic Exchange Updater.exe, “Traffic Exchange Updater Traffic Exchange 2.1.0 © Microleaves, Inc, 2016” by MICROLEAVES has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It runs as a scheduled task under the Windows Task Scheduler triggered daily at a specified time.
Publisher:
Microleaves  (signed by MICROLEAVES LTD)

Product:
Traffic Exchange

Description:
Traffic Exchange Updater Traffic Exchange 2.1.0 © Microleaves, Inc, 2016

Version:
2.1.0

MD5:
e04ef7f4c47414b4901135d60ca6e0f0

SHA-1:
a6b9a2bff329c8d8d49769b43619f71f61cf2e99

SHA-256:
cc9987fc1da892cfeb97d298f0dafcf7179c48cd6d5e9a4dffa776a898f3e049

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/23/2024 5:54:10 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.OnlineIO (L)
17.3.12.21

File size:
858.8 KB (879,456 bytes)

Product version:
2.1.0

Copyright:
Copyright (C) 2017 Microleaves

Original file name:
Traffic Exchange Updater.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\microleaves\traffic exchange\traffic exchange updater.exe

Digital Signature
Signed by:

Authority:
Symantec Corporation

Valid from:
4/21/2016 4:00:00 AM

Valid to:
4/22/2017 3:59:59 AM

Subject:
CN=MICROLEAVES LTD, O=MICROLEAVES LTD, L=London, S=London, C=GB, SERIALNUMBER=09500488, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.3=GB

Issuer:
CN=Symantec Class 3 Extended Validation Code Signing CA - G2, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
6A1A9CD144D454F7026C806D95533AB9

File PE Metadata
Compilation timestamp:
2/15/2017 8:10:29 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

Entry address:
0x38832

Entry point:
E8, 94, 06, 00, 00, E9, 8E, FE, FF, FF, FF, 25, 0C, 75, 45, 00, 8B, 4D, F4, 64, 89, 0D, 00, 00, 00, 00, 59, 5F, 5F, 5E, 5B, 8B, E5, 5D, 51, F2, C3, 8B, 4D, F0, 33, CD, F2, E8, 78, F5, FF, FF, F2, E9, DA, FF, FF, FF, 8B, 4D, EC, 33, CD, F2, E8, 67, F5, FF, FF, F2, E9, C9, FF, FF, FF, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, 70, 00, 47, 00, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, F2, C3, 50, 64, FF, 35, 00...
 
[+]

Code size:
341.5 KB (349,696 bytes)

Scheduled Task
Task name:
Traffic Exchange Updater

Trigger:
Daily (Runs daily at 2:50)


Remove Traffic Exchange Updater.exe - Powered by Reason Core Security