home

SysPlug.exe

SysPlug

SINETIS

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘SuperVigil’.
Publisher:
SINETIS  (signed and verified)

Product:
SysPlug

Description:
Remote operations Plug-In version

Version:
5.2.7.8

MD5:
0e4070afe9019beb8c2081414738e776

SHA-1:
7ab0dd2304d832ac06b7373b15a57bc96d114b92

SHA-256:
bc41c28fa0b1139ec014bb92af527aa5690cdf48cbc64870b76258ced4902364

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
7/12/2025 8:55:33 PM UTC  (today)

File size:
919.7 KB (941,736 bytes)

Product version:
5.2.7.8

Copyright:
1999-2010 SiNETiS - www.sinetis.com

Trademarks:
SysPlug

Original file name:
SysPlug.exe

File type:
Executable application (Win32 EXE)

Language:
French (France)

Common path:
C:\ProgramData\sinetis\syscript\sysplug.exe

Digital Signature
Signed by:
SINETIS

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
4/15/2010 2:00:00 AM

Valid to:
3/24/2011 12:59:59 AM

Subject:
CN=SINETIS, OU=Informatique, O=SINETIS, L=MARSEILLE, S=13008, C=FR

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
5F1F80541120EDAED4C16CC05195126A

File PE Metadata
OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.52

Entry address:
0xAD413

Entry point:
55, 8B, EC, 53, 56, 57, BB, 00, 20, 4C, 00, 66, F7, 05, F5, D3, 4A, 00, 04, 00, 75, 05, E9, 2F, 04, 00, 00, E9, 2D, 02, 00, 00, FF, 15, C0, 0B, 51, 00, 83, F8, FF, F9, 74, 54, 89, 83, D0, 03, 00, 00, C7, 83, D8, 03, 00, 00, 00, 00, 00, 00, C7, 83, D4, 03, 00, 00, 00, 00, 00, 00, E8, E1, 02, 00, 00, 72, 33, 89, 83, D4, 03, 00, 00, 66, C7, 80, AC, 00, 00, 00, 08, 00, E8, 0E, 00, 00, 00, 4D, 53, 20, 53, 61, 6E, 73, 20, 53, 65, 72, 69, 66, 00, 5E, FC, B9, 0E, 00, 00, 00, 8D, 78, 6C, 33, C0, AC, 66, AB, E2, FB...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
770 KB (788,470 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
SuperVigil

Command:
"C:\ProgramData\sinetis\syscript\sysplug.exe" C:\ProgramData\sinetis\supervigil\supervigil.spg


Scan SysPlug.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.