home

VPRC.exe

VisionPlus Remote Control

JacTek Multimedia Co., Ltd

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘VPRC’.
Publisher:
VisionPlus Technology Ltd.  (signed by JacTek Multimedia Co., Ltd)

Product:
VisionPlus Remote Control

Version:
1.0.0

MD5:
8dd957e1d641f3bc72c4663f375fa40e

SHA-1:
2f1ab674f624073a7794d2724790e50063bb2b16

SHA-256:
2e3067bf4a73818126e3ca2ef46c1af2ef7f97ea914988abbd3e4252b5537410

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 6:40:32 AM UTC  (today)

File size:
346 KB (354,272 bytes)

Product version:
1.0.0

Copyright:
Copyright (C) 2010 VisionPlus Technology Ltd.

Original file name:
VPRC.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\windows\vprc.exe

Digital Signature
Signed by:
JacTek Multimedia Co., Ltd

Authority:
GlobalSign nv-sa

Valid from:
10/19/2011 1:32:01 PM

Valid to:
10/19/2014 1:32:01 PM

Subject:
CN="JacTek Multimedia Co., Ltd", O="JacTek Multimedia Co., Ltd", L=New Taipei City, S=Taiwan, C=TW

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121300E6C00E3AEBD1741A5AF5425A9DA4E

File PE Metadata
Compilation timestamp:
6/19/2012 5:23:37 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:G1ehxhWCvIPMCxCUarnAVAvwf1VP6WsiY0aejFoBKYscgOVJLFDQqa:rIP1xCeggVP6WsiYEBoBBsGzFDs

Entry address:
0x2277D

Entry point:
E8, 2E, 86, 00, 00, E9, 78, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, 56, 8B, 44, 24, 14, 0B, C0, 75, 28, 8B, 4C, 24, 10, 8B, 44, 24, 0C, 33, D2, F7, F1, 8B, D8, 8B, 44, 24, 08, F7, F1, 8B, F0, 8B, C3, F7, 64, 24, 10, 8B, C8, 8B, C6, F7, 64, 24, 10, 03, D1, EB, 47, 8B, C8, 8B, 5C, 24, 10, 8B, 54, 24, 0C, 8B, 44, 24, 08, D1, E9, D1, DB, D1, EA, D1, D8, 0B, C9, 75, F4, F7, F3, 8B, F0, F7, 64, 24, 14, 8B, C8, 8B, 44, 24, 10, F7, E6, 03, D1, 72, 0E, 3B, 54, 24, 0C, 77, 08, 72, 0F, 3B, 44, 24, 08, 76, 09...
 
[+]

Entropy:
6.4455

Code size:
208 KB (212,992 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
VPRC

Command:
C:\windows\vprc.exe


Scan VPRC.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.