home

HeartlandPeripheralManager.exe

Advanced Peripheral Management Tool

Heartland Payment Systems, Inc.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘HeartlandPeripheralManager’.
Publisher:
Heartland Payment Systems, Inc.  (signed and verified)

Product:
Advanced Peripheral Management Tool

Description:
Hps.PeripheralManagementTool

Version:
1.0.5.0

MD5:
8e6dac876d11e495c0de87771f37df4f

SHA-1:
4121c1a2175061f72ad6f8d30b2b2a386b154a46

SHA-256:
66ad8e3529ee6769612ea18ccb2bc75bfc4862ffd59316390303dcfa21278259

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/6/2024 1:22:21 PM UTC  (today)

File size:
191.3 KB (195,880 bytes)

Product version:
1.0.5.0

Copyright:
Copyright © 2015

Original file name:
HeartlandPeripheralManager.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\heartlandperipheralmanager\heartlandperipheralmanager.exe

Digital Signature
Signed by:
Heartland Payment Systems, Inc.

Authority:
Entrust, Inc.

Valid from:
3/4/2014 5:39:45 PM

Valid to:
3/18/2016 10:56:21 PM

Subject:
CN="Heartland Payment Systems, Inc.", O="Heartland Payment Systems, Inc.", L=Princeton, S=New Jersey, C=US

Issuer:
CN=Entrust Code Signing Certification Authority - L1D, OU="(c) 2009 Entrust, Inc.", OU=www.entrust.net/rpa is incorporated by reference, O="Entrust, Inc.", C=US

Serial number:
4C176E5B

File PE Metadata
Compilation timestamp:
9/11/2015 5:47:40 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:oJEHEUY6lfOEAj5e4IH9cRySJEisncp93IIdwHximLYGrL:6FevHqcOEpcp9352LhL

Entry address:
0x2F91E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.8370

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
182.5 KB (186,880 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
HeartlandPeripheralManager

Command:
C:\Program Files\heartlandperipheralmanager\heartlandperipheralmanager.exe


Scan HeartlandPeripheralManager.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.