home

VideoffTrayIcon.exe

Videoff Tray Icon

(נטפרי (ע

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘VideoffTrayIcon’.
Publisher:
יעקובוב פיתוח תוכנה  (signed by (נטפרי (ע)

Product:
Videoff Tray Icon

Version:
1.0.0.0

MD5:
96338d1221fefa636825a98c976f3ce2

SHA-1:
450402fb24e0fc32ef34583b01db7ed830c0af46

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/6/2024 9:18:27 AM UTC  (today)

File size:
5.1 MB (5,303,128 bytes)

Product version:
1.0.0.0

Copyright:
(c) yakobov-dev.co.il. All rights reserved.

Original file name:
VideoffTrayIcon.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\videoff\videofftrayicon.exe

Digital Signature
Signed by:
(נטפרי (ע

Authority:
DigiCert Inc

Valid from:
4/20/2016 3:00:00 AM

Valid to:
6/28/2017 3:00:00 PM

Subject:
CN="(נטפרי (ע""ר", O="(נטפרי (ע""ר", L=Modi'in Ilit, C=IL

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
046D04F0E2A3AC982999F2FB6CDE63A5

File PE Metadata
Compilation timestamp:
6/5/2016 12:13:32 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

CTPH (ssdeep):
98304:sm58UBBtX6a0DsuDJKIZ+9E3tsNmMj5FLOAkGkzdnEVomFHKnPo:/Xm3tsNR5FLOyomFHKnPo

Entry address:
0x126555

Entry point:
E8, 6A, 0C, 00, 00, E9, 80, FE, FF, FF, 3B, 0D, E4, 1F, 5A, 00, F2, 75, 02, F2, C3, F2, E9, F7, 08, 00, 00, 55, 8B, EC, F6, 45, 08, 01, 56, 8B, F1, C7, 06, 54, DA, 57, 00, 74, 0A, 6A, 0C, 56, E8, C9, 04, 00, 00, 59, 59, 8B, C6, 5E, 5D, C2, 04, 00, 53, 56, 57, 6A, 00, 68, A0, 0F, 00, 00, 68, 04, EE, 63, 00, E8, C7, 52, 00, 00, 83, C4, 0C, 68, 64, 38, 55, 00, FF, 15, D0, 22, 55, 00, 8B, F0, 85, F6, 0F, 84, 8C, 00, 00, 00, 68, 58, DA, 57, 00, 56, FF, 15, D4, 22, 55, 00, 68, 74, DA, 57, 00, 56, 8B, D8, FF, 15...
 
[+]

Entropy:
6.6230

Code size:
1.3 MB (1,376,768 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
VideoffTrayIcon

Command:
"C:\Program Files\videoff\videofftrayicon.exe"


Scan VideoffTrayIcon.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.