home

sumo.exe

SUMo

KC Softwares

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘SUMo’. This is installed with KC Softwares SUMo.
Publisher:
KC Softwares

Product:
SUMo

Version:
3.9.4.221

MD5:
7237bbf42bb5b02963d26958754e9636

SHA-1:
dce1e43f10b08fc921e9a9087a3e0e38410c3ba6

SHA-256:
d09e3799b7cf29d6084b945b7d81b5f9d6aa2382cf397584190e8c5375b0b718

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 6:53:52 PM UTC  (today)

File size:
1.7 MB (1,747,968 bytes)

Product version:
0

File type:
Executable application (Win32 EXE)

Language:
French (France)

Common path:
C:\Program Files\kc softwares\sumo\sumo.exe

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:3mNdzrMpgTnmNLx+8NeWc40magngAqtRnTAL7xfaIvufnXuSkkBdZh:3mTMiqNRNCyYFAf98eSkkBd

Entry address:
0x12338C

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, 6C, 2D, 52, 00, E8, 3F, 34, EE, FF, 8B, 1D, C8, 29, 53, 00, 8B, 03, E8, BA, 44, F5, FF, 8B, 03, BA, 9C, 34, 52, 00, E8, A6, 40, F5, FF, 8B, 0D, D0, 2B, 53, 00, 8B, 03, 8B, 15, B4, 93, 51, 00, E8, B3, 44, F5, FF, 8B, 0D, 1C, 29, 53, 00, 8B, 03, 8B, 15, 10, 08, 51, 00, E8, A0, 44, F5, FF, 8B, 0D, D4, 29, 53, 00, 8B, 03, 8B, 15, 1C, F9, 50, 00, E8, 8D, 44, F5, FF, 8B, 0D, 38, 2C, 53, 00, 8B, 03, 8B, 15, C8, 10, 51, 00, E8, 7A, 44, F5, FF, 8B, 0D, 34, 27, 53, 00, 8B, 03, 8B, 15...
 
[+]

Entropy:
6.4886

Developed / compiled with:
Microsoft Visual C++

Code size:
1.1 MB (1,189,376 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
SUMo

Command:
C:\Program Files\kc softwares\sumo\sumo.exe \minimized


The file sumo.exe has been discovered within the following program.

KC Softwares SUMo  by KC Softwares
SUMo, or Software Update Monitor, is a free software application that will check the current versions of most of the popular software installed on a user's PC against it's huge database of known current versions.
www.kcsoftwares.com/?sumo
11% remove it
 
Powered by Should I Remove It?

Scan sumo.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.