» islclientlight.exe
Overview
Analysis
File Details

islclientlight.exe

XLAB D.O.O.

File name:

islclientlight.exe

Publisher:

XLAB D.O.O. (signed and verified)

MD5:

57d6d68f0bcc2cb4de99aa3cb4e893a8

SHA-1:

d049b664e59b01710622cacbc59614707cbc1974

SHA-256:

6ce6bb0e991aabb1f99ec431fe87cc15e21ce54de6d112511e08b480b720fafb

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/25/2024 10:46:01 PM UTC (today)

Scan engine

Detection

Engine version

Qihoo 360 Security

HEUR/QVM20.1.Malware.Gen

1.0.0.1015

File size:

755.9 KB (774,088 bytes)

File type:

Executable application (Win32 EXE)

Digital Signature

Signed by:

XLAB D.O.O.

Authority:

VeriSign, Inc.

Valid from:

6/19/2006 8:00:00 PM

Valid to:

6/24/2009 7:59:59 PM

Subject:

CN=XLAB D.O.O., OU=Testing & Deployment, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=XLAB D.O.O., L=Ljubljana, S=Slovenia, C=SI

Issuer:

CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

30E23CACC30F592D91FB347CD7D29400

File PE Metadata

Compilation timestamp:

5/20/2005 10:43:16 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

7.10

CTPH (ssdeep):

12288:xuHSsaPA9/tDQ+2z45uxUb4PWPBHsmHFaS/WRrwyHwXq4sGOVyCumK+AvMw/TraN:ESHMY8whOP62wrw9sNlfK+AzLr4Dk/DY

Entry address:

0x1E57

Entry point:

6A, 00, FF, 15, 68, 10, 40, 00, 50, E8, 88, FE, FF, FF, 50, FF, 15, 64, 10, 40, 00, CC, 8B, 0A, 3B, 4A, 04, 75, 0A, C7, 42, 10, 01, 00, 00, 00, 0C, FF, C3, 8A, 01, 41, 89, 0A, C3, 83, 62, 10, 00, 83, 62, 0C, 00, 56, 89, 02, 03, C1, 83, 4A, 08, FF, 6A, 05, 89, 42, 04, 5E, E8, CD, FF, FF, FF, 8B, 4A, 0C, 0F, B6, C0, C1, E1, 08, 0B, C1, 4E, 89, 42, 0C, 75, EA, 5E, C3, 55, 8B, EC, 51, 53, 56, 8B, 72, 08, 33, DB, 85, C0, 57, 8B, 7A, 0C, 7E, 2D, 89, 45, FC, D1, EE, D1, E3, 3B, FE, 72, 05, 2B, FE, 83, CB, 01, 81... 
[+]

Entropy:

7.9961

Packer / compiler:

FASM v1.3x

Code size:

7 KB (7,168 bytes)

Scan islclientlight.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.