» addlive_updater.exe
Overview
Analysis
File Details
Programs (1)

addlive_updater.exe

LiveFoundry Inc

This file is installed with the program AddLive Browser Plugin.

File name:

addlive_updater.exe

Publisher:

LiveFoundry Inc (signed and verified)

MD5:

49e44aee943b31ec6f18e48ce814cd9c

SHA-1:

e696d9b1660009e010121e9339af9bd01db315bc

SHA-256:

dc479e27d00c0fa42953764922b3c231c61f9ce41e0ee4b3e4b9ff978b408574

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/20/2024 12:43:18 AM UTC (today)

Scan engine

Detection

Engine version

Rising Antivirus

PE:Trojan.Win32.Generic.163ADCDB!372956379

23.00.65.14828

File size:

10.3 KB (10,528 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\local\addlive\addlive_updater.exe

Digital Signature

Signed by:

LiveFoundry Inc

Authority:

GlobalSign nv-sa

Valid from:

11/11/2013 5:35:22 PM

Valid to:

12/12/2014 5:35:22 PM

Subject:

E=support@addlive.com, CN=LiveFoundry Inc, OU=IT, O=LiveFoundry Inc, L=San Francisco, S=California, C=US

Issuer:

CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:

11218D939EB8AA1288251431A51B0841932F

File PE Metadata

Compilation timestamp:

11/13/2013 3:05:56 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

192:Tolmx1McqQBatVkUTgBxe1HCjjopmhh6RT8ol0iNoW1bZSiF:Tor7IKpwy8o5eW1wY

Entry address:

0x1230

Entry point:

81, EC, 18, 04, 00, 00, A1, 00, 30, 40, 00, 33, C4, 89, 84, 24, 14, 04, 00, 00, 8D, 04, 24, 50, FF, 15, 40, 20, 40, 00, 50, FF, 15, 58, 20, 40, 00, 85, C0, 0F, 84, 60, 01, 00, 00, 83, 3C, 24, 03, 0F, 8C, 56, 01, 00, 00, BA, 08, 02, 00, 00, 8D, 8C, 24, 0C, 02, 00, 00, C6, 01, 00, 41, 83, EA, 01, 75, F7, 56, 8B, 70, 04, 57, BF, 04, 01, 00, 00, 8D, 8C, 24, 14, 02, 00, 00, 8D, 49, 00, 8D, 97, FA, FE, FF, 7F, 85, D2, 74, 18, 0F, B7, 16, 66, 85, D2, 74, 10, 66, 89, 11, 83, C1, 02, 83, C6, 02, 83, EF, 01, 75, E0... 
[+]

Code size:

1.5 KB (1,536 bytes)

The file addlive_updater.exe has been discovered within the following program.

AddLive Browser Plugin by LiveFoundry Inc.

Publisher's description - “AddLive is a full RTC stack that covers all major web, mobile and desktop platforms. Even Google Glass. It allows for massive multiparty sessions with the highest quality video and voice.”

www.addlive.com

22% remove it

Scan addlive_updater.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.