home

upd.exe

UNIMAKE SOLUCOES CORPORATIVAS LTDA - EPP

This is a setup program which is used to install the application. This is installed with DANFE View. The file has been seen being downloaded from www.unidanfe.com.br and multiple other hosts.
Publisher:
UNIMAKE SOLUCOES CORPORATIVAS LTDA - EPP  (signed and verified)

MD5:
16cc8aed81ba44fb4d3ee84b4d47f5cd

SHA-1:
f180e657394f5518f73b6b3e790e6aef3a6ba0b4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
7/13/2025 8:58:47 AM UTC  (today)

File size:
2.6 MB (2,749,072 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Documents and Settings\{user}\Local settings\temporary internet files\content.ie5\{random}\upd.exe

Digital Signature
Signed by:
UNIMAKE SOLUCOES CORPORATIVAS LTDA - EPP

Authority:
GlobalSign nv-sa

Valid from:
1/23/2014 1:39:38 PM

Valid to:
1/24/2015 1:39:38 PM

Subject:
CN=UNIMAKE SOLUCOES CORPORATIVAS LTDA - EPP, OU=T.I, O=UNIMAKE SOLUCOES CORPORATIVAS LTDA - EPP, L=PARANAVAI, S=PARANA, C=BR

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121E4AEA5267F75002C315FE337269D6D37

File PE Metadata
Compilation timestamp:
5/5/2014 1:57:28 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.50

CTPH (ssdeep):
49152:efe78q4Lk/0Bq0ljG8IebCUZVn6KYCi3CUZCiQG:efC8q4LkM80lJNOdC6br

Entry address:
0x76B4C

Entry point:
DB, E3, 31, C0, BB, 60, 13, 54, 00, 89, C1, E8, B4, 58, 07, 00, 09, C0, 74, 14, B8, 54, 73, 50, 00, E8, A2, 62, 07, 00, E8, 11, 29, 0C, 00, B8, 00, 00, 00, 00, E8, 4F, A2, FB, FF, 90, 90, 90, 56, B8, 10, 88, 64, 00, E8, 99, 10, 00, 00, 89, C6, B8, 08, 80, 64, 00, E8, 8D, 10, 00, 00, 89, C3, B8, 14, 08, 65, 00, E8, 81, 10, 00, 00, 89, C2, B8, 54, 80, 64, 00, E8, 75, 10, 00, 00, 89, C1, 80, 3E, 00, 74, 0C, 89, D8, BB, 01, 00, 00, 00, E8, 66, 61, FA, FF, 80, 3A, 00, 74, 0C, 89, C8, BB, 01, 00, 00, 00, E8, 55...
 
[+]

Code size:
1.2 MB (1,281,024 bytes)

The file upd.exe has been discovered within the following program.

DANFE View  by Unimake Softwares
www.danfeview.com.br
About 7% of users remove it
 
Powered by Should I Remove It?

The file upd.exe has been seen being distributed by the following 2 URLs.

http://www.unidanfe.com.br/.../upd.exe

http://www.unimake.com.br/pub/.../upd.exe

Scan upd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.