utilumfc.exe

Utilu Mozilla Firefox Collection

Utilu

The program is a setup application that uses the Inno Setup installer. It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘UtiluMFCAllUsers’.
Scan utilumfc.exe - Powered by Reason Core Security
Publisher:
Utilu

Product:
Utilu Mozilla Firefox Collection

Version:
1.1.0.9

MD5:
e8bbed94cd3dde3ba3a0c987f3fc77e1

SHA-1:
aef63f864e7486ee0e22ec9260e6887c2a87de64

SHA-256:
8739c866d8e8c28f0768fe0ca27dd4370b6c0dbb6f981020422f9e31e8634ea7

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/8/2016 11:16:46 AM UTC  (today)

File size:
448.1 KB (458,889 bytes)

Product version:
1.1.0.9

Copyright:
Copyright 2014 Utilu

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\Program Files\utilumfc\utilumfc.exe

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:h/na4kA0+yhVbF9J5OS69zMpF0sIS06fqT6uXOxfahbTFHvj5S4qgoQ+QPV:5na9AhEZF9B1IS9qe8EYp5SQ+Qt

Entry address:
0x9C40

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, E8, CD, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E8, CD...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
37 KB (37,888 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
UtiluMFCAllUsers

Command:
"C:\Program Files\utilumfc\utilumfc.exe" \verysilent \suppressmsgboxes -allusersrun -uninstallmode


Scan utilumfc.exe - Powered by Reason Core Security