home

apalert.exe

Padvish Alert

Amnpardaz Software Company

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Padvish Antivirus Alert Daemon’.
Publisher:
Amnpardaz Software Company  (signed and verified)

Product:
Padvish Alert

Version:
1, 4, 38, 1485

MD5:
b9b0a33f8b9e695a2078d72c023feda1

SHA-1:
290d01443e7af1e6a0cd99cc794da2491d8975c8

SHA-256:
7a3ecd55067e9bbdae2dc89a66872fe89c519472aea5a72f5329967fe3a84efc

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 10:55:39 PM UTC  (today)

File size:
8 MB (8,375,888 bytes)

Product version:
1, 4, 38, 1485

Copyright:
Copyright (C) 2010

Original file name:
EPS_Alert.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\padvish antivirus\apalert.exe

Digital Signature
Signed by:
Amnpardaz Software Company

Authority:
Amnpardaz Software Company

Valid from:
5/15/2013 10:29:49 AM

Valid to:
1/1/2040 3:29:59 AM

Subject:
CN=Amnpardaz Software Company

Issuer:
CN=Amnpardaz Software Company

Serial number:
E3B9D1C905E53EBB43A6AD035155A322

File PE Metadata
Compilation timestamp:
3/10/2015 11:56:24 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
196608:t6nWK4jG3sNRaJDL6ybnA8+c4ZpF5HBS3dtXcXwnAfDO5Jsv6tWKFdu9CyJS:t6GGcNRa1DD+c4p5HBS3MXCYUJsv6tWC

Entry address:
0x405B0F

Entry point:
E8, 8C, 08, 00, 00, E9, 63, FD, FF, FF, CC, CC, CC, CC, CC, CC, CC, 57, 56, 53, 33, FF, 8B, 44, 24, 14, 0B, C0, 7D, 14, 47, 8B, 54, 24, 10, F7, D8, F7, DA, 83, D8, 00, 89, 44, 24, 14, 89, 54, 24, 10, 8B, 44, 24, 1C, 0B, C0, 7D, 14, 47, 8B, 54, 24, 18, F7, D8, F7, DA, 83, D8, 00, 89, 44, 24, 1C, 89, 54, 24, 18, 0B, C0, 75, 18, 8B, 4C, 24, 18, 8B, 44, 24, 14, 33, D2, F7, F1, 8B, D8, 8B, 44, 24, 10, F7, F1, 8B, D3, EB, 41, 8B, D8, 8B, 4C, 24, 18, 8B, 54, 24, 14, 8B, 44, 24, 10, D1, EB, D1, D9, D1, EA, D1, D8...
 
[+]

Entropy:
7.0668

Code size:
4.3 MB (4,480,512 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Padvish Antivirus Alert Daemon

Command:
"C:\Program Files\padvish antivirus\apalert.exe"


Scan apalert.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.