home

HiveSoft.exe

HiveSoft

Beijing Yunhai Collaboration Technology Limited Company

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘HiveSoft’.
Publisher:
Beijing Yunhai Collaboration Tech co., Ltd.  (signed by Beijing Yunhai Collaboration Technology Limited Company)

Product:
HiveSoft

Version:
1.0.0.0

MD5:
c7083832069f20182fa7a8308c3dc245

SHA-1:
b55588e80bcf541c0cfa447da21e642658790292

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 1:40:52 AM UTC  (today)

File size:
103.9 KB (106,352 bytes)

Product version:
1.0.0.0

Copyright:
Copyright @2009-2012

Original file name:
HiveSoft.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\hivesoft\hivesoft.exe

Digital Signature
Signed by:
Beijing Yunhai Collaboration Technology Limited Company

Authority:
VeriSign, Inc.

Valid from:
8/15/2011 8:00:00 AM

Valid to:
11/14/2014 7:59:59 AM

Subject:
CN=Beijing Yunhai Collaboration Technology Limited Company, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Beijing Yunhai Collaboration Technology Limited Company, L=beijing, S=beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
47F20F64E06A547FFE186D707631AFCA

File PE Metadata
Compilation timestamp:
8/2/2013 11:28:20 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x36470

Entry point:
60, BE, 00, 30, 42, 00, 8D, BE, 00, E0, FD, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75...
 
[+]

Entropy:
7.5978

Packer / compiler:
UPX 2.90LZMA

Code size:
80 KB (81,920 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
HiveSoft

Command:
C:\Program Files\hivesoft\hivesoft.exe \min


Scan HiveSoft.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.