home

u32.exe

ZeroVulnerabilityLabs, Inc.

This is installed with ZeroVulnerabilityLabs ExploitShield version 0.8.1 beta.
Publisher:
ZeroVulnerabilityLabs, Inc.  (signed and verified)

MD5:
9d1ad34edaaee83b788c510e230c74c4

SHA-1:
9591e7bcae9f9281dbdae2a347dabb9bca282113

SHA-256:
9587d52744d3fa32a791610fdcb4817f8474bd241eefe96b587e5da3bffb3ae6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
1/12/2025 10:47:26 PM UTC  (today)

File size:
186.2 KB (190,680 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\zerovulnerabilitylabs\exploitshield\u32.exe

Digital Signature
Signed by:
ZeroVulnerabilityLabs, Inc.

Authority:
DigiCert Inc

Valid from:
5/28/2012 7:00:00 PM

Valid to:
6/3/2013 7:00:00 AM

Subject:
CN="ZeroVulnerabilityLabs, Inc.", O="ZeroVulnerabilityLabs, Inc.", L=San Jose, S=California, C=US

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
07CA76C80E17FD2CA42587E9B14D22CE

File PE Metadata
Compilation timestamp:
11/29/2012 6:11:39 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
10.0

CTPH (ssdeep):
3072:RWDgzEN0Z/WTllsUfWMy1PfKokcydRf8vGyXv7y2IU5efhLsBMd:1vylub3BkcDf7y29efhUi

Entry address:
0x49C0

Entry point:
8B, FF, 55, 8B, EC, E8, C6, 0E, 00, 00, E8, 11, 00, 00, 00, 5D, C3, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, 6A, FE, 68, F8, 89, 42, 00, 68, A0, 5B, 40, 00, 64, A1, 00, 00, 00, 00, 50, 83, C4, E4, 53, 56, 57, A1, C8, A1, 42, 00, 31, 45, F8, 33, C5, 50, 8D, 45, F0, 64, A3, 00, 00, 00, 00, 89, 65, E8, 83, 3D, 7C, A5, 42, 00, 00, 75, 0E, 6A, 00, 6A, 00, 6A, 01, 6A, 00, FF, 15, DC, 71, 42, 00, C7, 45, FC, 00, 00, 00, 00, C7, 45, DC, 00, 00, 00, 00, E8, 01, 02, 00, 00, 8B...
 
[+]

Entropy:
6.6656

Code size:
148 KB (151,552 bytes)

The file u32.exe has been discovered within the following program.

ZeroVulnerabilityLabs ExploitShield version 0.8.1 beta  by ZeroVulnerabilityLabs
Publisher's description - “Every week new financial, state-sponsored and commercial espionage targeted attacks are discovered. These sophisticated advanced persistent threats use arsenals of vulnerability exploits that are weaponized to steal confidential information and trade secrets.”
www.zerovulnerabilitylabs.com
About 13% of users remove it
 
Powered by Should I Remove It?

Scan u32.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.