home

USBBooster.exe

USBブースター

ELECOM CO.,LTD.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘USBBooster’.
Publisher:
エレコム株式会社  (signed by ELECOM CO.,LTD.)

Product:
USBブースター

Version:
1, 0, 0, 8

MD5:
b0ef9bd53fa3d1abc4cc4fcdf2e79312

SHA-1:
2eab5b1bbfbe8ae0569212adef391f9793851ac9

SHA-256:
1722d180ad47272359fbd3bd3cff61daa71220a71cad22dd1d0bcc56acf42320

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 12:33:21 AM UTC  (today)

File size:
850.3 KB (870,752 bytes)

Product version:
1, 0, 0, 8

Copyright:
(C) Copyright 2010 ELECOM CO.,LTD ALL RIGHTS RESERVED.

Original file name:
USBBooster.exe

File type:
Executable application (Win64 EXE)

Common path:
C:\Program Files\elecom\usbbooster\usbbooster.exe

Digital Signature
Signed by:
ELECOM CO.,LTD.

Authority:
VeriSign, Inc.

Valid from:
1/4/2010 9:00:00 AM

Valid to:
1/5/2011 8:59:59 AM

Subject:
CN="ELECOM CO.,LTD.", OU=Product Development Dept., OU=Digital ID Class 3 - Microsoft Software Validation v2, O="ELECOM CO.,LTD.", L=Osaka, S=Osaka, C=JP

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1216CE3AF9BE0B9FD7963CAF21827DDE

File PE Metadata
Compilation timestamp:
8/24/2010 10:36:32 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:+rL1mwMVqocgNlli1FiYZxZi7CHTE0kO84sezny66NZAZX2YL9aUWzy:+/nIloQYZm74SO84rrENZDK96y

Entry address:
0x518D4

Entry point:
48, 83, EC, 28, E8, AF, 57, 00, 00, 48, 83, C4, 28, E9, 1A, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 66, 66, 0F, 1F, 84, 00, 00, 00, 00, 00, 48, 3B, 0D, 79, C5, 04, 00, 75, 11, 48, C1, C1, 10, 66, F7, C1, FF, FF, 75, 02, F3, C3, 48, C1, C9, 10, E9, 21, 58, 00, 00, CC, 48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 30, 49, 8B, D9, 49, 8B, F0, 48, 8B, FA, 4D, 85, C9, 75, 04, 33, C0, EB, 66, 48, 85, C9, 75, 25, E8, 45, 25, 00, 00, BB, 16, 00, 00, 00, 48, 83, 64, 24...
 
[+]

Entropy:
6.0782

Code size:
457.5 KB (468,480 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
USBBooster

Command:
"C:\Program Files\elecom\usbbooster\usbbooster.exe" \s


Scan USBBooster.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.