home

update.exe

OnVista Bank GmbH

Publisher:
OnVista Bank GmbH  (signed and verified)

Version:
5.2.0.0

MD5:
552ef2cc87d98030715a8636513e5e3b

SHA-1:
b5ad38a07d9a3f3b2d1921b0fcc40a290cee2900

SHA-256:
6725520694d55a7e615ef8ced7bdfa47286d9636c77118dbae11ffd5fd8aebdd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
7/8/2025 12:07:42 PM UTC  (today)

File size:
2.1 MB (2,207,048 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
German (Germany)

Common path:
C:\users\{user}\appdata\local\vwd\gts\update\update.exe

Digital Signature
Signed by:
OnVista Bank GmbH

Authority:
VeriSign, Inc.

Valid from:
9/9/2014 2:00:00 AM

Valid to:
10/5/2017 1:59:59 AM

Subject:
CN=OnVista Bank GmbH, OU=IT, O=OnVista Bank GmbH, L=Frankfurt am Main, S=Hessen, C=DE

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3C30B1B6F796D6CA7145B477CDA57F07

File PE Metadata
Compilation timestamp:
1/19/2015 9:58:01 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:lGf/sjypQBz7dSzmqFfoCjnOf9/ETwdk2Bb:lKsepRuZYa

Entry address:
0x1CA5B4

Entry point:
55, 8B, EC, 83, C4, F0, B8, 0C, 1E, 5C, 00, E8, 70, 14, E4, FF, E8, DB, 77, FF, FF, A1, A0, 78, 5D, 00, 8B, 00, E8, 33, EE, F4, FF, A1, A0, 78, 5D, 00, 8B, 00, BA, 44, A6, 5C, 00, E8, 1A, E8, F4, FF, 8B, 0D, C0, 75, 5D, 00, A1, A0, 78, 5D, 00, 8B, 00, 8B, 15, CC, A7, 5B, 00, E8, 22, EE, F4, FF, A1, A0, 78, 5D, 00, 8B, 00, E8, 7A, EF, F4, FF, 80, 3D, 50, DF, 5D, 00, 00, 75, 1E, 83, 3D, 24, 74, 5D, 00, 00, 74, 15, B8, 68, A6, 5C, 00, E8, 42, 19, EF, FF, A1, 24, 74, 5D, 00, 50, E8, E7, 48, E4, FF, E8, 92, D0...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1.8 MB (1,873,408 bytes)

Scan update.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.