kb915597.exe

Microsoft Malware Protection

Microsoft Corporation

Publisher:
Microsoft Corporation  (signed and verified)

Product:
Microsoft Malware Protection

Description:
AntiMalware Definition Update

Version:
1.153.1309.0

MD5:
68af162821ad843bf2b64a08b6899c45

SHA-1:
55f082173f40f1147d1ef239663b65ee22e946ec

SHA-256:
f52c35bd90b6b1297ec16bfa2b71d2a06d0b14d7eea35a113de89c4ddebefef6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
12/9/2016 8:11:26 PM UTC  (today)

File size:
4.5 MB (4,711,184 bytes)

Product version:
1.153.1309.0

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
mpas-fe_bd.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\Program Files\iobit\advanced systemcare 6\securityhole_backup\kb915597.exe

Digital Signature
Authority:
Microsoft Corporation

Valid from:
1/24/2013 5:33:36 PM

Valid to:
4/24/2014 6:33:36 PM

Subject:
CN=Microsoft Corporation, OU=AOC, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Code Signing PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
33000000ADC6484C2DCB9A424C0001000000AD

File PE Metadata
Compilation timestamp:
7/4/2013 7:20:08 PM

OS version:
6.3

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
98304:yGDh5gGcn7VsfXRq52OnyZ9QCdDzJz1lUCq4/8jh:yGl5ZwQhrrQCZzl0WW

Entry address:
0x1BD0

Entry point:
48, 8B, C4, 48, 89, 58, 08, 48, 89, 70, 10, 48, 89, 78, 18, 55, 41, 56, 41, 57, 48, 8D, A8, 38, FD, FF, FF, 48, 81, EC, B0, 03, 00, 00, 48, 8B, 05, 07, 45, 00, 00, 48, 33, C4, 48, 89, 85, A0, 02, 00, 00, 45, 33, FF, 33, C0, C7, 44, 24, 30, 03, 00, 00, 00, 41, 8B, DF, 4C, 89, 7C, 24, 60, 44, 89, 7C, 24, 48, 4C, 89, 7C, 24, 38, 48, 89, 44, 24, 40, 4C, 89, 7C, 24, 50, 48, 89, 44, 24, 58, E8, AE, 36, 00, 00, 41, 8D, 57, 01, 45, 33, C9, 45, 33, C0, 33, C9, E8, 19, 39, 00, 00, 48, 8D, 44, 24, 38, 48, 8D, 4C, 24...
 
[+]

Entropy:
7.9991  (probably packed)

Code size:
19.5 KB (19,968 bytes)