utility.exe

Lenovo Battery Management Software Ver3.0

Lenovo (Beijing) Limited

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘EnergyUtility’.
Publisher:
Lenovo(beijing) Limited  (signed by Lenovo (Beijing) Limited)

Product:
Lenovo Battery Management Software Ver3.0

Version:
4, 4, 1, 6

MD5:
f53ce72186dc74f71a55cfa015397c01

SHA-1:
411a295ee3b5b6870a4f6d486a711fde23ee233d

SHA-256:
d5f8e665665fff79b4e60a4c5f0859fb4d4933e72f720fba8a16189b6fb107b6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 9:54:28 PM UTC  (today)

File size:
4.2 MB (4,367,808 bytes)

Product version:
4, 4, 1, 6

Copyright:
Lenovo(beijing) Limited All rights reserved.

Original file name:
utility.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\Program Files\lenovo\energy management\utility.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
12/7/2009 10:00:00 PM

Valid to:
1/7/2012 9:59:59 PM

Subject:
CN=Lenovo (Beijing) Limited, OU=IT, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Lenovo (Beijing) Limited, L=Beijing, S=Beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2EDBA85021EE00C973B5C5398B2E1155

File PE Metadata
Compilation timestamp:
12/16/2009 9:27:37 PM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

Entry address:
0x5E8F0

Entry point:
48, 83, EC, 28, E8, 77, 6D, 00, 00, 48, 83, C4, 28, E9, 0E, FD, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 48, 83, EC, 28, 48, 8D, 05, 6D, F6, 02, 00, 48, 89, 5C, 24, 40, 48, 89, 7C, 24, 48, 8B, DA, 48, 8B, F9, 48, 89, 01, E8, 0E, 6E, 00, 00, F6, C3, 01, 48, 8B, 5C, 24, 40, 74, 08, 48, 8B, CF, E8, 7C, FF, FC, FF, 48, 8B, C7, 48, 8B, 7C, 24, 48, 48, 83, C4, 28, C3, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 4C, 8D, 41, 11, 48, 83, C2, 11, 4C, 2B, C2, 66, 90, 66, 66, 90...
 
[+]

Code size:
500 KB (512,000 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
EnergyUtility

Command:
C:\Program Files\lenovo\energy management\utility.exe