home

Updater.exe

ZipCloud Software Update

Cloud Backup Software Limited

The application Updater.exe by Cloud Backup Software Limited has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
ZipCloud  (signed by Cloud Backup Software Limited)

Product:
ZipCloud Software Update

Description:
ZipCloud

Version:
1.5.0.4

MD5:
85dc83718e64e3d5579aae9d8a83e34c

SHA-1:
c3622d3d700f2ffee1a0e3496274e15fc90d4e81

SHA-256:
d32b14da13ca1baa05581a957bd950dc0dc5793f7076d737afe6556947f5f89a

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/28/2024 12:14:41 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Backup.JustDevelopeIt.Optional (L)
16.10.11.10

File size:
218.1 KB (223,352 bytes)

Product version:
1.5.0.4

Copyright:
Copyright © ZipCloud 2015-2016

Original file name:
Updater.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\zipcloud\updater.exe

Digital Signature
Signed by:
Cloud Backup Software Limited

Authority:
DigiCert Inc

Valid from:
4/1/2015 6:00:00 PM

Valid to:
4/6/2018 6:00:00 AM

Subject:
CN=Cloud Backup Software Limited, O=Cloud Backup Software Limited, L=Fareham, S=Hampshire, C=GB

Issuer:
CN=DigiCert SHA2 Assured ID Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
06D7EDCBECE9E05EEBA35D993832CC3D

File PE Metadata
Compilation timestamp:
5/9/2015 1:48:37 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:Wlluf6z8zjMnrNzBRji/ilwBKF2P0D5kE1C8nluf6z8zjMnrNzBRji/ilwBKF2Py:yZRNNFnD5kE1CUZRNNFn/

Entry address:
0x1F77E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.0225

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
118 KB (120,832 bytes)

Remove Updater.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.