home

RadarSync2009.exe

rs2011FixIt

RadarSync

The application RadarSync2009.exe by RadarSync has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
3v  (signed by RadarSync)

Product:
rs2011FixIt

Version:
3.7.0.17

MD5:
22d5061498a49a7fbb274f195bea4ea9

SHA-1:
0363e96d738ab6370ed08a8069f7a1472d6c34b1

SHA-256:
827c5fdb368338100e9357c98119c4e193112868f2c4ef5c3755b9a90f7b9aaa

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/23/2024 9:59:47 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.RadarSync.DriverUpdater.Optional.Meta (L)
16.2.5.16

File size:
88.7 KB (90,792 bytes)

Product version:
3.7.0.17

Copyright:
Copyright © 3v 2011

Original file name:
RadarSync2009.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\radarsync\radarsync2009.exe

Digital Signature
Signed by:
RadarSync

Authority:
Thawte, Inc.

Valid from:
8/15/2011 8:00:00 PM

Valid to:
5/19/2012 7:59:59 PM

Subject:
CN=RadarSync, O=RadarSync, L=Highland Park, S=Illinois, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
21C0A661B6DC7A88F376DB8C90E62175

File PE Metadata
Compilation timestamp:
11/17/2011 5:16:36 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1536:ArgJbPf2gRs4+8m0R+kKaNNId5Ksl16MVAPZPFvPbSb/kPBVKA+/:AMKmPpN4KsndeZxbSb/kjh+/

Entry address:
0x170EE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.6149

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
84.5 KB (86,528 bytes)

Remove RadarSync2009.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.