home

ClinckSupport.exe

iCafe Manager

Ideacts Innovations Pvt Ltd

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Clinck v3’.
Publisher:
Ideacts Innovations Pvt. Ltd.  (signed by Ideacts Innovations Pvt Ltd)

Product:
iCafe Manager

Description:
Clinck System Bootstrap Application.

Version:
1.0.0.1

MD5:
9e10de7fb7a67bfb9410757cc277f81a

SHA-1:
b93ce2be656553e19947f7bada1f3b8235526938

SHA-256:
68a3a2f79ae521c65611a837d6bb2597e6348a9852301d6b50cba0b513bffc9d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 9:27:15 PM UTC  (today)

File size:
222.3 KB (227,664 bytes)

Product version:
1.0.0.1

Copyright:
© Ideacts Innovations Pvt. Ltd. All rights reserved.

Original file name:
ClinckSupport.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:
Ideacts Innovations Pvt Ltd

Authority:
VeriSign, Inc.

Valid from:
8/9/2012 5:30:00 AM

Valid to:
10/9/2013 5:29:59 AM

Subject:
CN=Ideacts Innovations Pvt Ltd, OU=iCafeManager, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Ideacts Innovations Pvt Ltd, L=Pune, S=Maharashtra, C=IN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
305551E2C57A24CE7459B8B75F6BC7F6

File PE Metadata
Compilation timestamp:
2/13/2013 1:39:47 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
3072:iWo7f+vPp3JSbefPoYSmSUWOS+xSnRbwg+3ssMVO5Y5h25wvoNF:52GpJSbeC2MnRp1O5Yod

Entry address:
0xD3F7

Entry point:
E8, C8, 03, 00, 00, E9, 36, FD, FF, FF, 3B, 0D, 44, 10, 42, 00, 75, 02, F3, C3, E9, 48, 04, 00, 00, 6A, 14, 68, 18, AD, 41, 00, E8, 00, 03, 00, 00, FF, 35, 9C, 1B, 42, 00, 8B, 35, 7C, 27, 41, 00, FF, D6, 59, 89, 45, E4, 83, F8, FF, 75, 0C, FF, 75, 08, FF, 15, 78, 27, 41, 00, 59, EB, 61, 6A, 08, E8, 22, 05, 00, 00, 59, 83, 65, FC, 00, FF, 35, 9C, 1B, 42, 00, FF, D6, 89, 45, E4, FF, 35, 98, 1B, 42, 00, FF, D6, 89, 45, E0, 8D, 45, E0, 50, 8D, 45, E4, 50, FF, 75, 08, E8, F1, 04, 00, 00, 89, 45, DC, FF, 75, E4...
 
[+]

Entropy:
6.1696

Code size:
68 KB (69,632 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Clinck v3

Command:
C:\icafeclient\clincksupport.exe


Scan ClinckSupport.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.