picasa3.exe

Picasa

Google Inc

It runs as a scheduled task under the Windows Task Scheduler.
Publisher:
Google Inc.  (signed by Google Inc)

Product:
Picasa

Version:
3.9.137.141

MD5:
0a7607a8d3fd2c23f880436ea48b9e49

SHA-1:
d7834f6da79ce23817b25e0784e4762c654cb6d6

SHA-256:
5f062236008864e77d869215baee156c93ee4be8b0e6b01d2a05098c73feb67b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
12/5/2016 1:38:05 PM UTC  (today)

File size:
9.7 MB (10,119,496 bytes)

Product version:
3.9.137

Copyright:
© 2003-2013 Google Inc.

Original file name:
Picasa.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\google\picasa3\picasa3.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
1/29/2014 1:00:00 AM

Valid to:
1/30/2016 12:59:59 AM

Subject:
CN=Google Inc, OU=Digital ID Class 3 - Java Object Signing, OU=Digital ID Class 3 - Java Object Signing, O=Google Inc, L=Mountain View, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2912C70C9A2B8A3EF6F6074662D68B8D

File PE Metadata
Compilation timestamp:
6/6/2014 1:32:47 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
98304:GvU90KPSTtxHusvZ8uJTr7C1sNPXqp1JWmvoDmPRg+zzKEHq03IAt7+KXM8phep/:L9VeSerwcmgaJgmj3RBy

Entry address:
0x7E623E

Entry point:
E8, F3, 17, 00, 00, E9, 16, FE, FF, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 18, F2, D3, 00, 89, 0D, 14, F2, D3, 00, 89, 15, 10, F2, D3, 00, 89, 1D, 0C, F2, D3, 00, 89, 35, 08, F2, D3, 00, 89, 3D, 04, F2, D3, 00, 66, 8C, 15, 30, F2, D3, 00, 66, 8C, 0D, 24, F2, D3, 00, 66, 8C, 1D, 00, F2, D3, 00, 66, 8C, 05, FC, F1, D3, 00, 66, 8C, 25, F8, F1, D3, 00, 66, 8C, 2D, F4, F1, D3, 00, 9C, 8F, 05, 28, F2, D3, 00, 8B, 45, 00, A3, 1C, F2, D3, 00, 8B, 45, 04, A3, 20, F2, D3, 00, 8D, 45, 08, A3, 2C, F2, D3, 00, 8B...
 
[+]

Entropy:
6.6060

Code size:
8.2 MB (8,605,696 bytes)

Autoplay Handler
Display name:
Picasa2ImportPicturesOnArrival

CLSID name:
OLE (Part 1 of 5)


Scheduled Task
Task name:
{0D407A27-607A-488F-99B3-5CE28149C70B}

Trigger:
Registration (Runs on registration)