home

SwMemTray.exe

SuperWin Utilities 3

Intercom, Inc.

It runs as a scheduled task under the Windows Task Scheduler triggered to execute each time a user logs in.
Publisher:
Intercom, Inc.  (signed and verified)

Product:
SuperWin Utilities 3

Description:
SwMemTray.exe

Version:
10.0.2.0

MD5:
ab28fcc47b7e87ce42809382e20e3981

SHA-1:
750ed2ed66650139203039cef37edbfbc05c0e58

SHA-256:
f8cf0e43d05fb096baec110abde54311f02634cd21fa9ec46b52ab15242ded9f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 5:19:48 AM UTC  (today)

File size:
73.3 KB (75,080 bytes)

Product version:
10.0.2.0

Copyright:
Copyright (C) 2013 by Intercom, Inc. All rights reserved.

Original file name:
SwMemTray.exe

File type:
Executable application (Win64 EXE)

Common path:
C:\Program Files\intercom\superwin utilities 3\swmemtray.exe

Digital Signature
Signed by:
Intercom, Inc.

Authority:
VeriSign, Inc.

Valid from:
3/8/2013 9:00:00 AM

Valid to:
4/4/2016 8:59:59 AM

Subject:
CN="Intercom, Inc.", OU=System Administrator Div., OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Intercom, Inc.", L=Taito-ku, S=Tokyo, C=JP

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
57C65C924AD23ABB6F8890D04DB9AC32

File PE Metadata
Compilation timestamp:
12/5/2013 9:33:46 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
768:es7vIvQ8KkGPgTpE8IpCOZjQpSgCOaiOtfn38g9xr1+zov9e3NUagl3YaVfv/Nhj:e7Q8KkajjQsUOhn3Z71+Ev9oaJGRV

Entry address:
0x3ED4

Entry point:
48, 83, EC, 28, E8, 67, 04, 00, 00, 48, 83, C4, 28, E9, FA, FC, FF, FF, CC, CC, 48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 8B, F2, 48, 8B, D9, F6, C2, 02, 74, 2A, 44, 8B, 41, F8, 4C, 8D, 0D, 4E, 06, 00, 00, BA, 18, 00, 00, 00, E8, 12, 02, 00, 00, 40, F6, C6, 01, 74, 09, 48, 8D, 4B, F8, E8, 31, F8, FF, FF, 48, 8D, 43, F8, EB, 16, E8, 2A, 06, 00, 00, 40, F6, C6, 01, 74, 08, 48, 8B, CB, E8, 18, F8, FF, FF, 48, 8B, C3, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, C3, CC, FF, 25...
 
[+]

Entropy:
5.6440

Code size:
15 KB (15,360 bytes)

Scheduled Task
Task name:
Memory Cleaner 2

Trigger:
Logon (Runs on logon)


Scan SwMemTray.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.