» stylizer.exe
Overview
Analysis
File Details
Behaviors (1)

stylizer.exe

Skybound Research Inc.

It runs as a scheduled task under the Windows Task Scheduler named RunAsStdUser.

File name:

stylizer.exe

Publisher:

Skybound Research Inc. (signed and verified)

MD5:

676d09afa0d96c3887865eff3be34377

SHA-1:

4e85c0575fa0b54780b1cd8e3f346843bcab0924

SHA-256:

effef197b27a2afe89ab654416e03997e61513bd7f4dfec7a610fe4e9d2a5648

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/26/2024 5:08:24 PM UTC (today)

File size:

15.3 MB (15,997,480 bytes)

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\skybound stylizer 5\stylizer.exe

Digital Signature

Signed by:

Skybound Research Inc.

Authority:

GoDaddy.com, Inc.

Valid from:

4/1/2013 1:57:02 PM

Valid to:

4/1/2014 1:57:02 PM

Subject:

CN=Skybound Research Inc., O=Skybound Research Inc., L=Fenwick, S=ON, C=CA

Issuer:

SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:

03FE6371299446

File PE Metadata

Compilation timestamp:

7/4/2013 6:53:59 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

393216:ssf5HdsuNDtQx7r1yQ+AaM2Sdqd/4Rl+IWIOZvcvuznpJ8k5:sCdfDA7r1yBSeQjBWI0IuVJ80

Entry address:

0x4067

Entry point:

55, 8B, EC, 83, E4, F8, 81, EC, F4, 08, 00, 00, 53, 56, 57, E8, BA, FB, FF, FF, 8B, 35, 0C, 60, 71, 00, FF, D6, 83, E0, 11, 3D, 11, 01, 00, 00, 0F, 84, AF, 03, 00, 00, FF, D6, 8B, 5C, 24, 18, A3, 0C, 50, 40, 00, E8, 89, FC, FF, FF, 8B, C8, 2B, 0D, 0C, 50, 40, 00, 6A, 03, 33, D2, 8B, C1, 5E, F7, F6, F7, C1, 00, 80, FF, FF, 0F, 85, 24, 02, 00, 00, 33, C0, 33, FF, 89, BC, 24, FC, 08, 00, 00, 66, 89, 84, 24, E8, 04, 00, 00, 89, BC, 24, BC, 04, 00, 00, 66, 89, 84, 24, A8, 00, 00, 00, E8, 45, FC, FF, FF, 8B, C8... 
[+]

Entropy:

7.9970

Developed / compiled with:

Microsoft Visual C++

Code size:

16 KB (16,384 bytes)

Scheduled Task

Task name:

RunAsStdUser

Trigger:

Registration (Runs on registration)

Scan stylizer.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.