home

GrooveMonitor.exe

GrooveMonitor Utility

Microsoft Corporation

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘GrooveMonitor’.
Publisher:
Microsoft Corporation

Product:
GrooveMonitor Utility

Version:
12.0.4518.1014

MD5:
7d5d3ce00eaf76a98a8326a390ed397f

SHA-1:
94ddee3db71807a69d11c7deffb689166c8ce51b

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/2/2024 1:21:19 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Sality
160917-0

File size:
98.3 KB (100,648 bytes)

Product version:
4.2.0.2623

Copyright:
© 2006 Microsoft Corporation. All rights reserved.

Original file name:
GrooveMonitor.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\microsoft office\office12\groovemonitor.exe

File PE Metadata
Compilation timestamp:
10/27/2006 1:53:53 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

Entry address:
0x2A96

Entry point:
E8, BC, 58, 00, 00, E9, 35, FD, FF, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, E0, 61, 40, 00, 89, 0D, DC, 61, 40, 00, 89, 15, D8, 61, 40, 00, 89, 1D, D4, 61, 40, 00, 89, 35, D0, 61, 40, 00, 89, 3D, CC, 61, 40, 00, 66, 8C, 15, F8, 61, 40, 00, 66, 8C, 0D, EC, 61, 40, 00, 66, 8C, 1D, C8, 61, 40, 00, 66, 8C, 05, C4, 61, 40, 00, 66, 8C, 25, C0, 61, 40, 00, 66, 8C, 2D, BC, 61, 40, 00, 9C, 8F, 05, F0, 61, 40, 00, 8B, 45, 00, A3, E4, 61, 40, 00, 8B, 45, 04, A3, E8, 61, 40, 00, 8D, 45, 08, A3, F4, 61, 40, 00, 8B...
 
[+]

Entropy:
7.6572

Code size:
10.5 KB (10,752 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
GrooveMonitor

Command:
"C:\Program Files\microsoft office\office12\groovemonitor.exe"


Scan GrooveMonitor.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.