» sendlogs.exe
Overview
Analysis
File Details

sendlogs.exe

ReviverSoft

File name:

sendlogs.exe

Publisher:

ReviverSoft (signed and verified)

MD5:

e83e13e60b5f87c75e2959f7c4099f2e

SHA-1:

10e2155121003ecb114aa59d4868ba549fa2dd96

SHA-256:

ccabbb028b532e6bf9344916ff2d28f5825a6d7681d4c6af0f9a7ce952e587eb

Scanner detections:

1 / 68

Status:

Inconclusive (not enough data for an accurate detection)

Analysis date:

5/7/2024 8:30:25 PM UTC (today)

Scan engine

Detection

Engine version

ESET NOD32

Win32/RegistryReviver

9.6761

File size:

151.8 KB (155,464 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\reviversoft\registry reviver\sendlogs.exe

Digital Signature

Signed by:

ReviverSoft

Authority:

VeriSign, Inc.

Valid from:

7/7/2011 2:00:00 AM

Valid to:

7/1/2014 1:59:59 AM

Subject:

CN=ReviverSoft, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=ReviverSoft, L=Walnut Creek, S=California, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

2F9114332C0C37FDC3283308019F0136

File PE Metadata

Compilation timestamp:

10/27/2010 9:29:25 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

3072:qwrjYgnSrTBrQdimiLHNuci4XVRglHwW5nq:qwjYxQdELHNuPeVy

Entry address:

0xBBB1

Entry point:

E8, 37, 33, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 20, 56, 33, F6, 39, 75, 0C, 75, 1D, E8, 52, 18, 00, 00, 56, 56, 56, 56, 56, C7, 00, 16, 00, 00, 00, E8, ED, 08, 00, 00, 83, C4, 14, 83, C8, FF, EB, 27, FF, 75, 14, 8D, 45, E0, FF, 75, 10, C7, 45, E4, FF, FF, FF, 7F, FF, 75, 0C, C7, 45, EC, 42, 00, 00, 00, 50, 89, 75, E8, 89, 75, E0, FF, 55, 08, 83, C4, 10, 5E, C9, C3, 8B, FF, 55, 8B, EC, FF, 75, 0C, 6A, 00, FF, 75, 08, 68, E7, F0, 40, 00, E8, 92, FF, FF, FF, 83, C4, 10, 5D, C3, 8B, FF, 55... 
[+]

Code size:

104.5 KB (107,008 bytes)

Scan sendlogs.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.