home

UpdateManager.exe

ABB Protection and Control IED Manager

ABB Oy

Publisher:
ABB  (signed by ABB Oy)

Product:
ABB Protection and Control IED Manager

Description:
PCMUpdateManager

Version:
2.4.90.0

MD5:
2011a02974e0a8741ebc0ee3e2846610

SHA-1:
7b43ee0081ba36a336f1835b5cf5ce7bf691fb1c

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/27/2024 2:08:35 AM UTC  (today)

Scan engine
Detection
Engine version

Vba32 AntiVirus
Malware-Cryptor.MSIL.gen.1
3.12.26.4

File size:
13.8 KB (14,176 bytes)

Product version:
2.4.1.0

Copyright:
2012, ABB

Trademarks:
All rights reserved

Original file name:
UpdateManager.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\common files\abb\updatemanager\updatemanager.exe

Digital Signature
Signed by:
ABB Oy

Authority:
VeriSign, Inc.

Valid from:
3/25/2010 4:00:00 AM

Valid to:
3/25/2013 3:59:59 AM

Subject:
CN=ABB Oy, OU=Substation Automation Products, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=ABB Oy, L=Vaasa, S=Vaasa, C=FI

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
57BF33C8F3AD5DA97DD1AC89D52CD7C4

File PE Metadata
Compilation timestamp:
1/13/2012 3:58:29 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
384:OG6e7WDngheMy7wUaeCwYJLu13ATbC1+f:YJEeB7wUaeCVLW3wbCof

Entry address:
0x311E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.0328

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
4.5 KB (4,608 bytes)

Windows Firewall Allowed Program
Name:
C:\Program Files\Common Files\ABB\UpdateManager\UpdateManager.exe


Scan UpdateManager.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.