home

Updater.exe

Edraw Live Update

EDRAW LIMITED

This is installed with Edraw Max 4.
Publisher:
EdrawSoft  (signed by EDRAW LIMITED)

Product:
Edraw Live Update

Version:
4.0.0.365

MD5:
ada4f02333013c82fc1f116fab06a5c3

SHA-1:
ec481fd0113742b069eb2bbbaebdaabd0225f030

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 2:34:47 PM UTC  (today)

File size:
514.1 KB (526,392 bytes)

Product version:
4.0.0.365

Copyright:
EdrawSoft. All rights reserved.

Original file name:
Updater.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\edraw max\updater.exe

Digital Signature
Signed by:
EDRAW LIMITED

Authority:
WoSign, Inc.

Valid from:
4/13/2008 8:00:00 PM

Valid to:
4/14/2009 7:59:59 PM

Subject:
CN=EDRAW LIMITED, OU=Class 3 - for Microsoft Authenticode Signing, O=EDRAW LIMITED, L=hongkong, S=kongkong, C=CN

Issuer:
CN=WoSign Code Signing Authority, O="WoSign, Inc.", C=US

Serial number:
008DC2635DC1174D7A9DDB8E50BBC492BC

File PE Metadata
Compilation timestamp:
8/10/2008 7:27:52 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
12288:ynVr0oXWb6Uu/UJ3nkGHpIeJ2b/hWOwtyRQ:0Uu/UJ3nkGHpIeJ2b/h/g

Entry address:
0x16229

Entry point:
E8, E2, 04, 00, 00, E9, 36, FD, FF, FF, 53, 8A, 5C, 24, 08, F6, C3, 02, 56, 8B, F1, 74, 24, 57, 68, D2, 68, 41, 00, 8D, 7E, FC, FF, 37, 6A, 0C, 56, E8, EC, 00, 00, 00, F6, C3, 01, 74, 07, 57, E8, EA, F6, FF, FF, 59, 8B, C7, 5F, EB, 13, E8, 69, 06, 00, 00, F6, C3, 01, 74, 07, 56, E8, D4, F6, FF, FF, 59, 8B, C6, 5E, 5B, C2, 04, 00, 6A, 10, 68, 18, E5, 41, 00, E8, E0, 03, 00, 00, 33, C0, 89, 45, E0, 89, 45, FC, 89, 45, E4, 8B, 45, E4, 3B, 45, 10, 7D, 13, 8B, 75, 08, 8B, CE, FF, 55, 14, 03, 75, 0C, 89, 75, 08...
 
[+]

Entropy:
7.1806

Code size:
100 KB (102,400 bytes)

The file Updater.exe has been discovered within the following program.

Edraw Max 4  by EdrawSoft
Publisher's description - “Vector-based diagramming software with lots of examples and templates.”
www.edrawsoft.com
9% remove it
 
Powered by Should I Remove It?

Scan Updater.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.