home

LocalDrive.exe

Local Drive

ASUS Cloud Corporation

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘HomeClude Drive’.
Publisher:
ASUS Cloud Corporation  (signed and verified)

Product:
Local Drive

Version:
1.0.0.62

MD5:
f72c05d13991907830c3b6bac939d293

SHA-1:
43d4c278b8321ba033eb36232098f89661de896a

SHA-256:
7cc34ade295249dfc5b7345199bb0febc9c5552a3d8cde6907bb1f71676527d5

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 11:36:18 AM UTC  (today)

File size:
2.2 MB (2,309,952 bytes)

Product version:
1.0.0.62

Copyright:
Copyright © 2014

Trademarks:
ASUS Cloud Corporation

Original file name:
LocalDrive.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\asus\localdrive\localdrive.exe

Digital Signature
Signed by:
ASUS Cloud Corporation

Authority:
VeriSign, Inc.

Valid from:
11/18/2011 7:00:00 AM

Valid to:
11/18/2014 6:59:59 AM

Subject:
CN=ASUS Cloud Corporation, OU=IT, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=ASUS Cloud Corporation, L=Taipei, S=Taiwan, C=TW

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
57C2DCC136FDAB6A88884EC57E4E2601

File PE Metadata
Compilation timestamp:
5/23/2014 10:19:21 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
49152:nTa3na3BVjf6p3VYBAJYCAnv/lhvxuR94FKsNG3gqola3:n2KP6p2aJYCAnHzvxuRmFRmgzU

Entry address:
0x200A1E

Entry point:
FF, 25, 00, 20, 00, 11, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.5318

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
2 MB (2,092,032 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
HomeClude Drive

Command:
C:\Program Files\asus\localdrive\localdrive.exe --useargs


Scan LocalDrive.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.