» apalert.exe
Overview
Analysis
File Details
Behaviors (1)

apalert.exe

Padvish Antivirus Alert GUI

Amnpardaz Software Company

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Padvish EPS Alert Daemon’.

File name:

apalert.exe

Publisher:

Amnpardaz Software Company (signed and verified)

Product:

Padvish Antivirus Alert GUI

Version:

1, 4, 31, 1143

MD5:

fbc5b975e457b27bfe8d84ba3ebe1805

SHA-1:

26ac643a861414ddf17b0524318210ac449b7406

SHA-256:

ebc1d4ff7f7aa89142e8aca80e5abaf759e85eaafddb3a1492b87d78f87523f0

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/23/2024 4:41:52 PM UTC (today)

File size:

7.2 MB (7,552,080 bytes)

Product version:

1, 4, 31, 1143

Original file name:

EPS_Alert.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\padvish eps\apalert.exe

Digital Signature

Signed by:

Amnpardaz Software Company

Authority:

Amnpardaz Software Company

Valid from:

5/15/2013 10:29:49 AM

Valid to:

1/1/2040 3:29:59 AM

Subject:

CN=Amnpardaz Software Company

Issuer:

CN=Amnpardaz Software Company

Serial number:

E3B9D1C905E53EBB43A6AD035155A322

File PE Metadata

Compilation timestamp:

5/11/2014 4:30:41 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

196608:jJQtZxac78xCdOntzLdrzk2S2UPJsHJsv6tWKFdu9CBaTXwPAYDTG:YZxb7YCdOtzL5zYsHJsv6tWKFdu9CSX3

Entry address:

0x375AA4

Entry point:

E8, 47, 04, 00, 00, E9, 63, FD, FF, FF, 6A, 10, 68, 30, 46, AA, 00, E8, A6, 01, 00, 00, 33, C0, 89, 45, E0, 89, 45, FC, 89, 45, E4, 8B, 45, E4, 3B, 45, 14, 7D, 17, FF, 75, 0C, 8B, 4D, 08, FF, 55, 18, 8B, 45, 10, 01, 45, 08, 01, 45, 0C, FF, 45, E4, EB, E1, C7, 45, E0, 01, 00, 00, 00, C7, 45, FC, FE, FF, FF, FF, E8, 08, 00, 00, 00, E8, A9, 01, 00, 00, C2, 18, 00, 83, 7D, E0, 00, 75, 11, FF, 75, 1C, FF, 75, E4, FF, 75, 10, FF, 75, 08, E8, EF, FB, FF, FF, C3, 8B, FF, 55, 8B, EC, FF, 75, 14, FF, 75, 10, FF, 75... 
[+]

Entropy:

7.0857

Code size:

3.7 MB (3,859,968 bytes)

Startup File (All Users Run)

Registry location:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:

Padvish EPS Alert Daemon

Command:

"C:\Program Files\padvish eps\apalert.exe"

Scan apalert.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.