» gpucheck.exe
Overview
Analysis
File Details

gpucheck.exe

Smart Compute Ltd

The application gpucheck.exe by Smart Compute has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.

File name:

gpucheck.exe

Publisher:

Smart Compute Ltd (signed and verified)

MD5:

88270313ec9f69fe8802756137ca3b95

SHA-1:

e3c9d1df03834c9e1ae15a54df86ba30b4b60ed2

SHA-256:

20ab32057c93020153ba2b8f9da2ac1812fe0381bce38a29569a01c587fdf21e

Scanner detections:

1 / 68

Status:

Adware

Note:

Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:

4/26/2024 5:46:26 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.SmartCompute (M)

16.1.31.14

File size:

37.6 KB (38,472 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\smart compute\researcher\gpucheck.exe

Digital Signature

Signed by:

Smart Compute Ltd

Authority:

COMODO CA Limited

Valid from:

7/5/2013 5:30:00 AM

Valid to:

7/6/2014 5:29:59 AM

Subject:

CN=Smart Compute Ltd, O=Smart Compute Ltd, POBox=Suite LP21498, STREET=145-157 St John Street, L=Clerkenwell, S=London, PostalCode=EC1V 4PW, C=GB

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00CB9E4160189018A02F5EC6ABCEC74C32

File PE Metadata

Compilation timestamp:

6/25/2013 1:05:59 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

10.0

CTPH (ssdeep):

384:r2Zy8nPqdP8YOsdKl6tNPBhocY9gFR+3uwllOvEDH3b0nuke1DPOFB/OMhNuDMC+:r8itOCK4JhkgFI1wEDXAngDqBfhhA

Entry address:

0x13CB

Entry point:

E8, 0F, 15, 00, 00, E9, 95, FE, FF, FF, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 38, 9C, 40, 00, 89, 0D, 34, 9C, 40, 00, 89, 15, 30, 9C, 40, 00, 89, 1D, 2C, 9C, 40, 00, 89, 35, 28, 9C, 40, 00, 89, 3D, 24, 9C, 40, 00, 66, 8C, 15, 50, 9C, 40, 00, 66, 8C, 0D, 44, 9C, 40, 00, 66, 8C, 1D, 20, 9C, 40, 00, 66, 8C, 05, 1C, 9C, 40, 00, 66, 8C, 25, 18, 9C, 40, 00, 66, 8C, 2D, 14, 9C, 40, 00, 9C, 8F, 05, 48, 9C, 40, 00, 8B, 45, 00, A3, 3C, 9C, 40, 00, 8B, 45, 04, A3, 40, 9C, 40, 00, 8D, 45, 08, A3, 4C, 9C, 40... 
[+]

Entropy:

6.2055

Code size:

17.5 KB (17,920 bytes)

Remove gpucheck.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.