home

FileHelpSetup.exe

FileHelp

System Software, LLC

Publisher:
System Software, LLC  (signed and verified)

Product:
FileHelp

Description:
FileHelpSetup.exe

Version:
2.0.0.0

MD5:
434954cd4db7b4c44fd8844170089886

SHA-1:
18a1812541162bb1a4b7aa8d202c56bb300312d7

SHA-256:
13eea1115d5d92146f8715c4a05e04e963d332edac480a8ca6b37625c01b06c9

Scanner detections:
5 / 68

Status:
Clean  (5 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/27/2024 12:32:14 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Crypt.XPACK.Gen
8.3.2.4

IKARUS anti.virus
Trojan.Crypt
t3scan.1.9.5.0

Quick Heal
(Suspicious) - DNAScan
8.16.14.00

Rising Antivirus
PE:Malware.Generic/QRS!1.9E2D [F]
23.00.65.16809

Sophos
Mal/Packer
4.98

File size:
938.1 KB (960,576 bytes)

Product version:
2.0.0.0

Copyright:
System Software, LLC

Trademarks:
System Software, LLC

Original file name:
FileHelpSetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\data\ultimate media player\3d43563b\afc35e8f\filehelpsetup.exe

Digital Signature
Signed by:
System Software, LLC

Authority:
VeriSign, Inc.

Valid from:
1/25/2012 7:00:00 PM

Valid to:
1/25/2013 6:59:59 PM

Subject:
CN="System Software, LLC", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="System Software, LLC", L=Bay Village, S=Ohio, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
60E08EA6D4992788C511A28C5841095D

File PE Metadata
Compilation timestamp:
6/19/1992 6:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:DZ3tB4ppO4+fzKjM+27vUYTl74SQcewOjV:DZ9B4pdAKleL75/G

Entry address:
0x176F4

Entry point:
55, 8B, EC, B9, 04, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 51, B8, 54, 76, 41, 00, E8, DE, EC, FE, FF, 33, C0, 55, 68, E0, 78, 41, 00, 64, FF, 30, 64, 89, 20, B8, F4, 78, 41, 00, E8, 06, 07, FF, FF, A2, 9D, 98, 41, 00, C6, 05, 9C, 98, 41, 00, 00, E8, D1, EE, FE, FF, 25, FF, 00, 00, 00, 83, F8, 05, 76, 07, C6, 05, 9C, 98, 41, 00, 01, A1, 38, 84, 41, 00, 33, D2, 89, 10, B8, 98, 98, 41, 00, E8, 95, CE, FE, FF, 8D, 55, EC, B8, 08, 79, 41, 00, E8, 5C, FD, FF, FF, 8B, 55, EC, B8, 98, 98, 41, 00, E8, CF, CE, FE...
 
[+]

Entropy:
6.7313

Developed / compiled with:
Microsoft Visual C++

Code size:
91 KB (93,184 bytes)

Scan FileHelpSetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.