home

webdrive.exe

WebDrive

South River Technologies

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘WebDriveTray’.
Publisher:
South River Technologies, Inc.  (signed by South River Technologies)

Product:
WebDrive

Version:
16, 0, 0, 4431

MD5:
904ce3c41eb2577a345dc876549f0303

SHA-1:
816d6712d620a141092171047352637f3ab3d0d2

SHA-256:
772d24463fae06a5bc3adb279d2d13df5a3f844ef32e1bb846003c0edd90756d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/6/2024 3:13:30 PM UTC  (today)

File size:
16.8 MB (17,584,648 bytes)

Product version:
16, 0, 0, 4431

Copyright:
1996-2016, South River Technologies, Inc.

Trademarks:
South River Technologies®, WebDrive®, GroupDrive®, Titan FTP Server®, DMZedge Server®, Cornerstone MFT®

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\Program Files\webdrive\webdrive.exe

Digital Signature
Signed by:
South River Technologies

Authority:
VeriSign, Inc.

Valid from:
11/17/2014 12:00:00 AM

Valid to:
2/15/2018 11:59:59 PM

Subject:
CN=South River Technologies, O=South River Technologies, L=Annapolis, S=Maryland, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
16493978058CFEF050D57EA4058BA2A8

File PE Metadata
Compilation timestamp:
11/18/2016 5:41:01 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
14.0

Entry address:
0x87BF14

Entry point:
48, 83, EC, 28, E8, 67, 10, 00, 00, 48, 83, C4, 28, E9, 22, FE, FF, FF, CC, CC, 48, 8B, C4, 48, 89, 58, 08, 48, 89, 68, 10, 48, 89, 70, 18, 48, 89, 78, 20, 41, 56, 48, 83, EC, 20, 49, 8B, 59, 38, 48, 8B, F2, 4D, 8B, F0, 48, 8B, E9, 49, 8B, D1, 48, 8B, CE, 49, 8B, F9, 4C, 8D, 43, 04, E8, 5C, 01, 00, 00, 44, 8B, 5B, 04, 41, B8, 01, 00, 00, 00, 44, 8B, 55, 04, 41, 8B, C3, 41, 23, C0, 41, 83, E3, 02, 41, 80, E2, 66, 44, 0F, 44, D8, 45, 85, DB, 74, 14, 4C, 8B, CF, 4D, 8B, C6, 48, 8B, D6, 48, 8B, CD, E8, 16, 7A...
 
[+]

Entropy:
6.0585

Code size:
10.7 MB (11,197,952 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
WebDriveTray

Command:
C:\Program Files\webdrive\webdrive.exe \trayicon


Scan webdrive.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.