home

sleek bill.exe

Intelligent IT

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘SleekBillSys’. This is installed with Sleek Bill.
Publisher:
Intelligent IT  (signed and verified)

MD5:
ad412b972264cdbf4d0500e76f448452

SHA-1:
868eab7939c4d446b0c27efb7dcc94a4d0ec23cf

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/23/2024 3:53:17 PM UTC  (today)

File size:
1.6 MB (1,644,768 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\sleek bill\sleek bill.exe

Digital Signature
Signed by:
Intelligent IT

Authority:
Thawte, Inc.

Valid from:
2/4/2013 5:30:00 AM

Valid to:
2/5/2014 5:29:59 AM

Subject:
CN=Intelligent IT, O=Intelligent IT, L=Sibiu, S=Sibiu, C=RO

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
1B715F755BE1F796D6C403B9AAA82CFD

File PE Metadata
Compilation timestamp:
10/9/2013 7:20:20 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.56

CTPH (ssdeep):
49152:twjavE3twVF5oNd5UViDDn1zK9Ner5Mu:twevEdi+NHU+58v

Entry address:
0x1290

Entry point:
55, 89, E5, 83, EC, 08, C7, 04, 24, 02, 00, 00, 00, FF, 15, 9C, 12, 41, 00, E8, A8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 8B, 0D, DC, 12, 41, 00, 89, E5, 5D, FF, E1, 8D, 74, 26, 00, 55, 8B, 0D, C4, 12, 41, 00, 89, E5, 5D, FF, E1, 90, 90, 90, 90, 55, BA, 80, 00, 00, 00, 89, E5, 57, 31, C0, 8D, BD, E8, FE, FF, FF, 56, 53, 81, EC, 1C, 01, 00, 00, 89, 54, 24, 08, 89, 44, 24, 04, 89, 3C, 24, E8, B7, 3F, 00, 00, 89, 7C, 24, 04, C7, 04, 24, 18, 00, 00, 00, E8, 07, 0B, 00, 00, 85, C0, 0F, 84, 7C, 00, 00...
 
[+]

Entropy:
7.8866

Packer / compiler:
MingWin32

Code size:
18 KB (18,432 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
SleekBillSys

Command:
"C:\Program Files\sleek bill\sleek bill.exe" \s


The file sleek bill.exe has been discovered within the following program.

Sleek Bill  by Intelligent IT
www.sleekbill.com
About 4% of users remove it
 
Powered by Should I Remove It?

Scan sleek bill.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.