home

updateservice.exe

Sutherland Global Services, Inc.

This is a setup program which is used to install the application. It runs as a windows Service named “Swisscom PC Assistant Updater”. This is installed with Swisscom PC-Assistant. The file has been seen being downloaded from swisscomagentconsole.sutherlandglobal.com.
Publisher:
Sutherland Global Services, Inc.  (signed and verified)

Description:
Update Exe

Version:
2.0.0.17

MD5:
34a96c8ef1b3fd55e78297eab2fbf79a

SHA-1:
56323d8ddaa1fee7645809325417e986fb1330fd

SHA-256:
69e394fe04bae22331220289ce0cfacbb7e5642cca1932d119b94c90b623c2bb

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/25/2024 11:19:58 AM UTC  (today)

File size:
3.2 MB (3,367,848 bytes)

Product version:
2.0

Original file name:
UpdateService

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\updateservice.exe

Digital Signature
Signed by:
Sutherland Global Services, Inc.

Authority:
Symantec Corporation

Valid from:
2/4/2016 1:00:00 AM

Valid to:
9/28/2017 1:59:59 AM

Subject:
CN="Sutherland Global Services, Inc.", O="Sutherland Global Services, Inc.", L=Rochester, S=New York, C=US

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
0AA0388C35B76762BB7260AFE2D23118

File PE Metadata
Compilation timestamp:
3/2/2016 4:44:59 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:ozY4Rdw+6yyftxSnvDi3yD44GTVqnzXB98CoiBde:ozHddgCD4yBde

Entry address:
0x2D1D8C

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, 38, 06, 6C, 00, E8, CF, DB, D3, FF, A1, FC, 7E, 6D, 00, 8B, 00, 80, 78, 40, 00, 74, 10, A1, FC, 7E, 6D, 00, 8B, 00, E8, BA, 9B, F2, FF, 84, C0, 74, 0C, A1, FC, 7E, 6D, 00, 8B, 00, 8B, 10, FF, 52, 44, 8B, 0D, F0, 7B, 6D, 00, A1, FC, 7E, 6D, 00, 8B, 00, 8B, 15, 4C, CA, 6B, 00, 8B, 18, FF, 53, 40, A1, FC, 7E, 6D, 00, 8B, 00, 8B, 10, FF, 52, 48, 5B, E8, 00, 82, D3, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
2.8 MB (2,949,120 bytes)

Service
Display name:
Swisscom PC Assistant Updater

Service name:
DownloadService

Type:
Win32OwnProcess, InteractiveProcess


The file updateservice.exe has been discovered within the following program.

Swisscom PC-Assistant  by Sutherland Global Services Inc.,
About 3% of users remove it
 
Powered by Should I Remove It?

The file updateservice.exe has been seen being distributed by the following URL.

https://swisscomagentconsole.sutherlandglobal.com/tools/.../UpdateService.exe

Scan updateservice.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.