home

AUMStatus.exe

Radia Client Automation Application Usage Manager Agent

Persistent Systems Ltd.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘!AUMStatus’.
Publisher:
Persistent Systems  (signed by Persistent Systems Ltd.)

Product:
Radia Client Automation Application Usage Manager Agent

Description:
Radia Client Automation Application Usage Manager Agent - Status Application

Version:
09.10.0000

MD5:
03c539935691e56be71fe61738a4f65f

SHA-1:
0b9a99438f61e8f9b1b1aead5f562d85259e7ad2

SHA-256:
31e68ce6b55af9b2bf7f6b1826beec449f6b3d2ee8a7b1da631398bf290d38c4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 7:46:50 PM UTC  (today)

File size:
77 KB (78,824 bytes)

Product version:
09.10.0000

Copyright:
©Copyright 2013 Persistent Systems, its licensors, and Hewlett-Packard Development Company, LP.

Original file name:
AUMStatus.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\novadigm\bin\aumstatus.exe

Digital Signature
Signed by:
Persistent Systems Ltd.

Authority:
COMODO CA Limited

Valid from:
5/9/2013 8:00:00 PM

Valid to:
5/10/2014 7:59:59 PM

Subject:
CN=Persistent Systems Ltd., O=Persistent Systems Ltd., STREET="CTS No. 12A/12, Erandwana Near Padale Palace", L=Pune, S=Maharashtra, PostalCode=411004, C=IN

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
6A1BE504EF0CE2EF75D6A1521F65B12D

File PE Metadata
Compilation timestamp:
1/2/2014 12:47:07 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
1536:tEgLiHaNfhMnkq0EePp2JwpFrAHolgAhd:Cg6EOuEDS3AHolgc

Entry address:
0x4B11

Entry point:
6A, 60, 68, E0, AA, 40, 00, E8, 77, 03, 00, 00, BF, 94, 00, 00, 00, 8B, C7, E8, E7, FC, FF, FF, 89, 65, E8, 8B, F4, 89, 3E, 56, FF, 15, 88, A1, 40, 00, 8B, 4E, 10, 89, 0D, AC, F2, 40, 00, 8B, 46, 04, A3, B8, F2, 40, 00, 8B, 56, 08, 89, 15, BC, F2, 40, 00, 8B, 76, 0C, 81, E6, FF, 7F, 00, 00, 89, 35, B0, F2, 40, 00, 83, F9, 02, 74, 0C, 81, CE, 00, 80, 00, 00, 89, 35, B0, F2, 40, 00, C1, E0, 08, 03, C2, A3, B4, F2, 40, 00, 33, F6, 56, 8B, 3D, 7C, A1, 40, 00, FF, D7, 66, 81, 38, 4D, 5A, 75, 1F, 8B, 48, 3C, 03...
 
[+]

Entropy:
5.3741

Developed / compiled with:
Microsoft Visual C++ v7.0

Code size:
36 KB (36,864 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
!AUMStatus

Command:
C:\Program Files\novadigm\bin\aumstatus.exe


Scan AUMStatus.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.