home

uachelper64.exe

UACHelper Module

Eskil Software

Publisher:
Eskil Software  (signed and verified)

Product:
UACHelper Module

Version:
1, 0, 0, 1

MD5:
fd92586595f54b69e62e976a429af558

SHA-1:
bc8d76c8d178e0f589dfdc618eaea33cdfa3e50f

SHA-256:
bf15924182713dbfe84d696410f3bc5cac4ad6c6cd50d12aaa83a92b59f2576b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 12:43:00 AM UTC  (today)

File size:
61 KB (62,496 bytes)

Product version:
1, 0, 0, 1

Copyright:
Copyright 2009 Eskil Software

Original file name:
UACHelper.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\Program Files\magic notes\uachelper64.exe

Digital Signature
Signed by:
Eskil Software

Authority:
Thawte, Inc.

Valid from:
4/26/2012 5:30:00 AM

Valid to:
5/15/2014 5:29:59 AM

Subject:
CN=Eskil Software, O=Eskil Software, L=Melbourne, S=Victoria, C=AU

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
1296C6FE87AD09C637EA0FD7990091F1

File PE Metadata
Compilation timestamp:
12/26/2012 11:41:21 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
768:y/IWpTuRsUK9WqiGRJpdBgqPPXEg0qNICFiOPDEr811233e8X0zAXX0XXX/XXXXf:FsuRsVIibf328VgOPDEs1233e8X0qavr

Entry address:
0x4FD4

Entry point:
48, 83, EC, 28, E8, D7, 03, 00, 00, 48, 83, C4, 28, E9, 26, FD, FF, FF, CC, CC, 48, 89, 5C, 24, 10, 44, 89, 44, 24, 18, 48, 89, 4C, 24, 08, 56, 57, 41, 54, 48, 83, EC, 40, 49, 8B, F1, 41, 8B, F8, 4C, 8B, E2, 48, 8B, D9, FF, CF, 89, 7C, 24, 70, 78, 0F, 49, 2B, DC, 48, 89, 5C, 24, 60, 48, 8B, CB, FF, D6, EB, E9, EB, 00, 48, 8B, 5C, 24, 68, 48, 83, C4, 40, 41, 5C, 5F, 5E, C3, CC, CC, 48, 8B, C4, 4C, 89, 48, 20, 44, 89, 40, 18, 48, 89, 50, 10, 53, 56, 57, 41, 54, 48, 83, EC, 38, 4D, 8B, E1, 49, 63, F8, 48, 8B...
 
[+]

Entropy:
5.4539

Code size:
18 KB (18,432 bytes)

Scan uachelper64.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.