» eUpdate.exe
Overview
Analysis
File Details
Programs (1)
Downloads (1)

eUpdate.exe

The application eUpdate.exe has been detected as a potentially unwanted program by 28 anti-malware scanners. This file is typically installed with the program eSafe Security Control 1.0.0.2522 by Banyan Tree Technology Limited which is a potentially unwanted software program. The file has been seen being downloaded from file.soft365.com.

File name:

eUpdate.exe

Version:

2.1.0.2548

MD5:

9c45d9e4d38a3bff76bd56a25e7c4695

SHA-1:

11106621ce4f4fffda04a608c85eb8db83041b67

SHA-256:

87a6acf6e409a6363895ad1f120a3a1a511814fe438e1ef62a86fed9b6fd0485

Scanner detections:

28 / 68

Status:

Potentially unwanted

Analysis date:

6/26/2025 12:19:35 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Application.ExqPage.D

1151

Agnitum Outpost

Trojan.Sisproc

7.1.1

AhnLab V3 Security

Trojan/Win32.Swisyn

2013.12.06

Avira AntiVirus

TR/Wysotot.A.6

7.11.118.10

avast!

Win32:Malware-gen

2014.9-131211

AVG

Generic_r

2014.0.3643

Baidu Antivirus

Malware.Win32.Adware

4.0.3.131126

Bitdefender

Application.ExqPage.D

1.0.20.1195

Comodo Security

TrojWare.Win32.Trojan.Agent.Gen

17393

Dr.Web

Trojan.Click2.60353

9.0.1.0239

Emsisoft Anti-Malware

Trojan.Generic.9447025

8.13.08.27.01

ESET NOD32

Win32/ELEX (variant)

7.9137

Fortinet FortiGate

W32/ELEX.N

8/27/2013

F-Secure

Application.ExqPage.D

11.2013-27-08_3

G Data

Application.ExqPage

13.8.22

IKARUS anti.virus

Win32.SuspectCrc

t3scan.2.2.29

Malwarebytes

Trojan.Clicker

v2013.08.27.01

McAfee

RDN/Generic PUP.x!bj3

5600.7180

Microsoft Security Essentials

TrojanDownloader:Win32/Wysotot.A

1.163.1557.0

MicroWorld eScan

Application.ExqPage.D

14.0.0.717

NANO AntiVirus

Trojan.Win32.Staser.ccncxi

0.28.0.56582

Norman

Troj_Generic.NJERL

11.20130827

Quick Heal

TrojanDownloader.Wysotot

12.13.12.00

Sophos

Generic PUA BB

4.95

Total Defense

Win32/Tnega.ERPfCCC

37.0.10498

Trend Micro House Call

TROJ_GEN.R0CCC0OHC13

7.2.239

Trend Micro

TROJ_GEN.R0CCC0OHC13

10.465.27

VIPRE Antivirus

Trojan.Win32.Generic

24058

File size:

384.5 KB (393,728 bytes)

Product version:

2.1.0.2548

Original file name:

eUpdate.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\eupdate.exe

File PE Metadata

Compilation timestamp:

7/10/2013 11:51:56 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

12288:+mUFii8SGt6X1bjsTLEhrvUpWhOUor0nj:+mUmSBwLEhrvUp0zlj

Entry address:

0x130F4

Entry point:

E8, 07, 52, 00, 00, E9, 7F, FE, FF, FF, 55, 8B, EC, 8B, 45, 14, 56, 85, C0, 74, 3C, 83, 7D, 08, 00, 75, 13, E8, 67, 33, 00, 00, 6A, 16, 5E, 89, 30, E8, 72, 24, 00, 00, 8B, C6, EB, 25, 83, 7D, 10, 00, 74, E7, 39, 45, 0C, 73, 09, E8, 49, 33, 00, 00, 6A, 22, EB, E0, 50, FF, 75, 10, FF, 75, 08, E8, 4E, EE, FF, FF, 83, C4, 0C, 33, C0, 5E, 5D, C3, 55, 8B, EC, 5D, E9, 2F, 53, 00, 00, 55, 8B, EC, 83, 7D, 08, 00, 74, 2D, FF, 75, 08, 6A, 00, FF, 35, F0, 23, 43, 00, FF, 15, C0, 11, 42, 00, 85, C0, 75, 18, 56, E8, 04... 
[+]

Entropy:

7.2984

Code size:

126 KB (129,024 bytes)

The file eUpdate.exe has been discovered within the following program.

eSafe Security Control 1.0.0.2522 by Banyan Tree Technology Limited

eSafe is a potentially unwanted web browser extension and Browser helper Object (for Internet Explorer) that delivers contextual based advertising to the web browser.

83% remove it

The file eUpdate.exe has been seen being distributed by the following URL.

http://file.soft365.com/Public/softs/eGdp/1.0.0.2588/.../_eUpdate_2013729165326.exe

Remove eUpdate.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.