home

winbiostandalone.exe

LastPass

Publisher:
LastPass  (signed and verified)

MD5:
ef5ddb57640e94b501c0fc187b8b6a92

SHA-1:
9da6ceee1fb538f3346cc23c4eab1092d1129136

SHA-256:
7acb1d2007cfd8e141019b5efeb7ea752b99030b4fe1b4c0b33b672a942cac8b

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
5/10/2024 7:08:14 AM UTC  (today)

Scan engine
Detection
Engine version

Clam AntiVirus
PUA.Packed.PECompact-1
0.98/18155

SUPERAntiSpyware
Trojan.Dropper/Gen
10831

File size:
144.5 KB (148,008 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\lastpass\winbiostandalone.exe

Digital Signature
Signed by:
LastPass

Authority:
COMODO CA Limited

Valid from:
6/28/2011 8:00:00 AM

Valid to:
6/28/2014 7:59:59 AM

Subject:
CN=LastPass, O=LastPass, STREET=226 Maple Ave W STE 301, L=Vienna, S=VA, PostalCode=22180, C=US

Issuer:
CN=COMODO Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
6A21177197E854AD7D330FFF3C3FEA0C

File PE Metadata
Compilation timestamp:
8/11/2011 4:11:02 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
3072:VVjm3O0n+vPW0wUbsS3D9V7Nx11PxFeFSUJBqtg7F1tQ+btofXqfuD4S:i3OuY+KJz77XxFySAz7FBbO7DP

Entry address:
0x196EE

Entry point:
B8, 18, E2, 4D, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 77, 1F, 63, C1, C1, A4, 79, EC, 30, F0, 9D, B9, 3B, 37, 22, F6, 8D, 48, 27, 02, 11, 7B, 1B, 46, 6A, 8B, 9A, A3, 64, 33, 54, C2, 06, 2A, 12, C3, 5F, BB, 1F, 66, 37, F2, 95, 70, EC, 51, 26, 26, E3, 93, 04, 2A, FC, 07, D1, A9, D5, 53, F0, 43, 2D, EB, C3, 6E, 2B, F1, 82, ED, 8B, 6C, 77, DA, 55, 49, 79, 69, B4, 12, A0, 1F, 00, 91, 60, F2, C0, C6, 82, 16, 01, 0F, 79, D0, 29...
 
[+]

Entropy:
7.6635

Packer / compiler:
PECompact v2

Code size:
172.5 KB (176,640 bytes)

Scan winbiostandalone.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.