home

AVTray.exe

Energizersoft Tech AV Tray

Energizer Softech Pvt ltd

The application AVTray.exe by Energizer Softech Pvt ltd has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Energizersoft Tech  (signed by Energizer Softech Pvt ltd)

Product:
Energizersoft Tech AV Tray

Version:
3.2.14

MD5:
588465c7cff2ec5a303eb0a8844f598d

SHA-1:
97729f05b90a03904be930e7c3019c0ac39224b8

SHA-256:
c36da1ae848400ad07e6f981b390d0c973bbbf6f91320ce79dd610d58815b94e

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/19/2024 3:37:29 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
16.1.25.21

File size:
1.1 MB (1,186,400 bytes)

Product version:
3.2.14

Copyright:
Energizersoft Tech Copyright (C) 2011

Original file name:
AVTray.exe

File type:
Executable application (Win32 EXE)

Language:
English (United Kingdom)

Common path:
C:\Program Files\av booster\backup\1418436257\avtray.exe

Digital Signature
Signed by:
Energizer Softech Pvt ltd

Authority:
COMODO CA Limited

Valid from:
7/20/2011 7:00:00 PM

Valid to:
7/20/2016 6:59:59 PM

Subject:
CN=Energizer Softech Pvt ltd, O=Energizer Softech Pvt ltd, STREET=13/267 Geeta Colony, L=Delhi, S=Delhi, PostalCode=110031, C=IN

Issuer:
CN=COMODO Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
209A749E9EB13B3BCA0002A965947A5D

File PE Metadata
Compilation timestamp:
3/21/2013 1:43:06 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:M2lNC3+//O2VJYXHY/QxAYdicQt3nE/cH3o/arVGblT93A1BeYrHTICp1MGPe/FW:M2++//O2VJYX4/QxAYdicQt3nE/cHaaN

Entry address:
0x983C0

Entry point:
E8, 0E, 07, 00, 00, E9, 63, FD, FF, FF, FF, 25, 14, A2, 4A, 00, FF, 25, 18, A2, 4A, 00, FF, 25, 1C, A2, 4A, 00, FF, 25, 20, A2, 4A, 00, FF, 25, 24, A2, 4A, 00, FF, 25, 28, A2, 4A, 00, FF, 25, 2C, A2, 4A, 00, FF, 25, 30, A2, 4A, 00, FF, 25, 34, A2, 4A, 00, FF, 25, 38, A2, 4A, 00, FF, 25, 3C, A2, 4A, 00, FF, 25, 40, A2, 4A, 00, FF, 25, 44, A2, 4A, 00, FF, 25, 48, A2, 4A, 00, FF, 25, 4C, A2, 4A, 00, FF, 25, 50, A2, 4A, 00, FF, 25, 54, A2, 4A, 00, FF, 25, 58, A2, 4A, 00, FF, 25, 5C, A2, 4A, 00, FF, 25, 60, A2...
 
[+]

Entropy:
6.7606

Code size:
673.5 KB (689,664 bytes)

Remove AVTray.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.