home

u64.exe

ZeroVulnerabilityLabs, Inc.

This is installed with ZeroVulnerabilityLabs ExploitShield version 0.8.1 beta.
Publisher:
ZeroVulnerabilityLabs, Inc.  (signed and verified)

MD5:
6ae68d1f8e8cfd1e2b8e685bc4fc122f

SHA-1:
279dd92c822743e721de98d44c36ba17cf9f3df7

SHA-256:
3e0f754404b8b39d9cc19752d2bd5c3ab56ce157e1d7e5cc0fd1b6391bd3a90b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 8:17:29 AM UTC  (today)

File size:
285.7 KB (292,568 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\Program Files\zerovulnerabilitylabs\exploitshield\u64.exe

Digital Signature
Signed by:
ZeroVulnerabilityLabs, Inc.

Authority:
DigiCert Inc

Valid from:
5/29/2012 1:00:00 AM

Valid to:
6/3/2013 12:00:00 PM

Subject:
CN="ZeroVulnerabilityLabs, Inc.", O="ZeroVulnerabilityLabs, Inc.", L=San Jose, S=California, C=US

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
07CA76C80E17FD2CA42587E9B14D22CE

File PE Metadata
Compilation timestamp:
11/30/2012 12:11:29 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows Console

Linker version:
10.0

CTPH (ssdeep):
3072:Y5oZnvdI0qbaWuSOuR4IbeFXlnw4WB2nZklq8+rNSt6sPgQQdViufcxUBwY1XrUd:YSvWbu/VZklqdQhYlJ3oOF1t7k

Entry address:
0x2DD60

Entry point:
48, 83, EC, 28, E8, 37, 10, 00, 00, E8, 12, 00, 00, 00, 48, 83, C4, 28, C3, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 48, 83, EC, 68, 48, C7, 44, 24, 40, 00, 00, 00, 00, E8, FE, 01, 00, 00, 48, 8B, 40, 08, 48, 89, 44, 24, 38, C7, 44, 24, 30, 00, 00, 00, 00, 48, 8B, 44, 24, 38, 48, 89, 44, 24, 58, 48, 8D, 0D, 04, 74, 01, 00, 33, C0, 48, 8B, 54, 24, 58, F0, 48, 0F, B1, 11, 48, 89, 44, 24, 40, 48, 83, 7C, 24, 40, 00, 74, 23, 48, 8B, 44, 24, 38, 48, 39, 44, 24, 40, 75, 0A, C7, 44, 24, 30, 01, 00, 00...
 
[+]

Code size:
186.5 KB (190,976 bytes)

The file u64.exe has been discovered within the following program.

ZeroVulnerabilityLabs ExploitShield version 0.8.1 beta  by ZeroVulnerabilityLabs
Publisher's description - “Every week new financial, state-sponsored and commercial espionage targeted attacks are discovered. These sophisticated advanced persistent threats use arsenals of vulnerability exploits that are weaponized to steal confidential information and trade secrets.”
www.zerovulnerabilitylabs.com
About 13% of users remove it
 
Powered by Should I Remove It?

Scan u64.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.