» NPSIFXBinaryUpgrade.exe
Overview
Analysis
File Details

NPSIFXBinaryUpgrade.exe

Samsung PC Studio

SAMSUNG ELECTRONICS.Co.LTD

File name:

Publisher:

Samsung Electronics Co., Ltd. (signed by SAMSUNG ELECTRONICS.Co.LTD)

Product:

Samsung PC Studio

Description:

NPS IFX FUS

Version:

1.0.0.1

MD5:

b165511e17b23b07565ef0854f08d079

SHA-1:

dddc212be63b8c0eeb49b66485aa46d8344eab27

SHA-256:

63ae91318c2351c61ff4443f18c6c13a6996194e2f6cb6beaa1a86fdc9d37659

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/26/2024 9:52:22 PM UTC (today)

File size:

1.3 MB (1,327,528 bytes)

Product version:

1.0.0.1

Original file name:

NPSIFXBinaryUpgrade.exe

File type:

Executable application (Win32 EXE)

Language:

Korean (Korea)

Common path:

C:\Program Files\samsung\samsung new pc studio\npsifxbinaryupgrade.exe

Digital Signature

Signed by:

SAMSUNG ELECTRONICS.Co.LTD

Authority:

Thawte Consulting (Pty) Ltd.

Valid from:

6/23/2009 7:00:00 PM

Valid to:

8/23/2011 6:59:59 PM

Subject:

CN=SAMSUNG ELECTRONICS.Co.LTD, O=SAMSUNG ELECTRONICS.Co.LTD, L=Suwon, S=GYEONGGI-DO, C=KR

Issuer:

CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:

12B8F3643C79E42067869268628213C4

File PE Metadata

Compilation timestamp:

8/19/2009 8:48:31 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

12288:U7qX2F2QlZgZ9qG3/eWD7v3rFLwCZ0i5h8M2R:V20Qlg9qGPeQ8l

Entry address:

0x27D0D

Entry point:

E8, DE, 04, 00, 00, E9, 36, FD, FF, FF, 3B, 0D, 28, 30, 44, 00, 75, 02, F3, C3, E9, 5E, 05, 00, 00, 53, 8A, 5C, 24, 08, F6, C3, 02, 56, 8B, F1, 74, 24, 57, 68, B8, 83, 42, 00, 8D, 7E, FC, FF, 37, 6A, 0C, 56, E8, F9, 00, 00, 00, F6, C3, 01, 74, 07, 57, E8, BD, F3, FF, FF, 59, 8B, C7, 5F, EB, 13, E8, 5C, 06, 00, 00, F6, C3, 01, 74, 07, 56, E8, A7, F3, FF, FF, 59, 8B, C6, 5E, 5B, C2, 04, 00, CC, FF, 25, EC, E8, 42, 00, FF, 25, AC, E8, 42, 00, 6A, 10, 68, C8, AD, 43, 00, E8, C0, 03, 00, 00, 33, C0, 89, 45, E0... 
[+]

Entropy:

5.6769

Code size:

180 KB (184,320 bytes)

Scan NPSIFXBinaryUpgrade.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.