home

setpasswd.exe

uvnc bvba

This is installed with UltraVnc. The file has been seen being downloaded from praticonet.com.br.
Publisher:
uvnc bvba  (signed and verified)

MD5:
94a7cf62624da193ac5e09b566bdf51b

SHA-1:
eb5faf6e8e7c95c6e6d29b38f7f6757c7153bdfc

SHA-256:
b03633845361361c74e36dbd47d2260a732990dc87185f526f4e11d6438cb87c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/16/2024 4:08:52 AM UTC  (today)

File size:
69.8 KB (71,448 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\uvnc bvba\ultravnc\setpasswd.exe

Digital Signature
Signed by:
uvnc bvba

Authority:
VeriSign, Inc.

Valid from:
8/12/2013 8:00:00 PM

Valid to:
10/11/2016 7:59:59 PM

Subject:
CN=uvnc bvba, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=uvnc bvba, L=Antwerpen, S=Antwerpen, C=BE

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
774F40EDC70CDDE5A056F5573AA30950

File PE Metadata
Compilation timestamp:
10/13/2013 2:36:53 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
11.0

CTPH (ssdeep):
768:to0El4IeLu7U+ssfI/Hzw4E/QVFuNK7cdWc2mzKgKVwtosWjcd5Myq0RmUjsRf+K:HJPyf9qHBcdlwgPosWjcd2HqsRf+25F

Entry address:
0x2347

Entry point:
E8, DE, 14, 00, 00, E9, 7B, FE, FF, FF, 55, 8B, EC, FF, 15, 1C, 90, 40, 00, 6A, 01, A3, A4, F9, 40, 00, E8, 1F, 18, 00, 00, FF, 75, 08, E8, 3D, 1B, 00, 00, 83, 3D, A4, F9, 40, 00, 00, 59, 59, 75, 08, 6A, 01, E8, 05, 18, 00, 00, 59, 68, 09, 04, 00, C0, E8, 0B, 1B, 00, 00, 59, 5D, C3, 55, 8B, EC, 81, EC, 24, 03, 00, 00, 6A, 17, E8, 66, 5E, 00, 00, 85, C0, 74, 05, 6A, 02, 59, CD, 29, A3, 88, F7, 40, 00, 89, 0D, 84, F7, 40, 00, 89, 15, 80, F7, 40, 00, 89, 1D, 7C, F7, 40, 00, 89, 35, 78, F7, 40, 00, 89, 3D, 74...
 
[+]

Entropy:
5.8111

Code size:
29 KB (29,696 bytes)

The file setpasswd.exe has been discovered within the following program.

UltraVnc  by uvnc bvba
Publisher's description - “UltraVNC is a software that can display the screen of another computer (via internet or network) on your own screen. The program allows you to use your mouse and keyboard to control the other PC remotely.”
www.uvnc.com
26% remove it
 
Powered by Should I Remove It?

The file setpasswd.exe has been seen being distributed by the following URL.

http://praticonet.com.br/update2011/.../setpasswd.exe&rd=10811428C1DF&keycli=C265153A8B&computer=pax_01

Scan setpasswd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.