TrueImageMonitor.exe

Acronis True Image

Acronis International GmbH

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘TrueImageMonitor.exe’.
Publisher:
Acronis  (signed by Acronis International GmbH)

Product:
Acronis True Image

Description:
Acronis True Image Monitor

Version:
18,0,0,6703

MD5:
74b87ca448778f64087c83443dd981a0

SHA-1:
8890fc3342336e749eef62ffdd477888bd5036d9

SHA-256:
23e48204009b8418b28647711e688e80857289384503427776fb8dee5f292b15

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 12:45:12 PM UTC  (today)

File size:
5.1 MB (5,306,776 bytes)

Product version:
18,0,0,6703

Copyright:
Copyright (C) 2000-2014 Acronis

Trademarks:
Acronis

Original file name:
TrueImageMonitor.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\acronis\trueimagehome\trueimagemonitor.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
8/27/2012 8:00:00 PM

Valid to:
8/28/2015 7:59:59 PM

Subject:
CN=Acronis International GmbH, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Acronis International GmbH, L=Schaffhausen, S=Schaffhausen, C=CH

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
16437AAA13F5543F67E10E03893EA315

File PE Metadata
Compilation timestamp:
3/11/2015 7:04:10 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

Entry address:
0x1E8908

Entry point:
E8, E0, 0A, 00, 00, E9, 9E, FD, FF, FF, FF, 25, 50, E7, 65, 00, 3B, 0D, CC, BC, 78, 00, 75, 02, F3, C3, E9, 5A, 0B, 00, 00, 6A, 14, 68, B0, 87, 75, 00, E8, 35, 0A, 00, 00, FF, 35, 38, F0, 79, 00, 8B, 35, D8, E8, 65, 00, FF, D6, 59, 89, 45, E4, 83, F8, FF, 75, 0C, FF, 75, 08, FF, 15, D4, E8, 65, 00, 59, EB, 67, 6A, 08, E8, 35, 0C, 00, 00, 59, 83, 65, FC, 00, FF, 35, 38, F0, 79, 00, FF, D6, 89, 45, E4, FF, 35, 34, F0, 79, 00, FF, D6, 59, 59, 89, 45, E0, 8D, 45, E0, 50, 8D, 45, E4, 50, FF, 75, 08, 8B, 35, C0...
 
[+]

Entropy:
6.6040

Code size:
2.4 MB (2,478,080 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
TrueImageMonitor.exe

Command:
"C:\Program Files\acronis\trueimagehome\trueimagemonitor.exe"