home

CLXReader.exe

CLXReader

CREALOGIX E-Payment AG

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘CLXReader’.
Publisher:
CREALOGIX E-Payment AG  (signed and verified)

Product:
CLXReader

Version:
2.0.5.0

MD5:
415ba804a36b858b1655123061a39136

SHA-1:
9c97cb79ee93570aa09c8374fc163916ef006448

SHA-256:
9579a1e28d775a79c6c7a8d1322cbf7a5c741f7475cc91ff3c839c6f99e861f6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 4:50:03 AM UTC  (today)

File size:
3.9 MB (4,108,112 bytes)

Product version:
2.0.5.0

Copyright:
© 2012 CREALOGIX E-Payment AG

Original file name:
CLXReader.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\clx.paypen\clxreader.exe

Digital Signature
Signed by:
CREALOGIX E-Payment AG

Authority:
VeriSign, Inc.

Valid from:
8/12/2011 2:00:00 AM

Valid to:
8/12/2012 1:59:59 AM

Subject:
CN=CREALOGIX E-Payment AG, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=CREALOGIX E-Payment AG, L=Huenenberg, S=Zug, C=CH

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5A58606B83112B8FCD326815E355AFA8

File PE Metadata
Compilation timestamp:
4/24/2012 10:06:46 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
49152:DYAMZiKhYAMZiKvKYAMZiKhYAMZiKcYAMZiKnYAMZiKjYAMZiK+cNLYAMZiKFZ59:nNcNo5pUIEIN71DUvAdLPmi

Entry address:
0x3E6BAE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 03, 00, 03, 00, 00, 00, 28, 00, 00, 80, 0E, 00, 00, 00, 58, 00, 00, 80, 10, 00, 00, 00, 70, 00, 00, 80, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.2263

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
3.9 MB (4,082,688 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
CLXReader

Command:
C:\Program Files\clx.paypen\clxreader.exe


Scan CLXReader.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.