SoftwareUpdate.exe

  • File Path: C:\Program Files (x86)\Glary Utilities 5\SoftwareUpdate.exe
  • Description: Glary Utilities Software Update

Screenshot

SoftwareUpdate.exe SoftwareUpdate.exe

Hashes

Type Hash
MD5 4E1E2E1348D0FE11222B7D55D249E4FA
SHA1 689F1D98EA297026BAD600A22D7166E0C2310BAE
SHA256 E80DD3046ED07ED1E225F89208358F38D49A61F1FB1FB1D48EFEA105115A8A85
SHA384 6265E0F5DFDA08C6C1728083B3792B3AD24366D7521B66399DAB240B138364F55F50A90C470C7176F78A192982F71D43
SHA512 622F91AF8FE21B49CB9E00A627558D5A0908F55F10486995B5F7F3325E4992AEFA9BF577C334B037C46A4F657D2512BAFF860E3D45B5D1D76865103A19CBA0E6
SSDEEP 12288:JKiWfsyRiBIgQJfckRH/k2qc8nzLxx4aRYOG2j8TDSZQCLyLgwxcg:JKnfsL8JfbTqZnzLxxJFtj8TDSZQCLyR
IMP F78021E2E00A29FE2381D68C0AD2832D
PESHA1 A2178DA76D4414D3E73F758D0C4E847DF976CB24
PE256 7997B90B66952DDB5930DA3F3D97A236CB8852FCF0062B65E3AE04E9D4B96D00

Runtime Data

Window Title:

Software Update

Open Handles:

Path Type
(R-D) C:\Windows\Fonts\StaticCache.dat File
(R-D) C:\Windows\System32\en-US\mswsock.dll.mui File
(R-D) C:\Windows\SysWOW64\en-US\user32.dll.mui File
(R-D) C:\Windows\WinSxS\x86_microsoft.windows.c..-controls.resources_6595b64144ccf1df_6.0.19041.1_en-us_130e63d987a738df\comctl32.dll.mui File
(RW-) C:\Program Files (x86)\Glary Utilities 5 File
(RW-) C:\Windows File
(RW-) C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9625_none_508ef7e4bcbbe589 File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.c..-controls.resources_6595b64144ccf1df_6.0.19041.1_en-us_130e63d987a738df File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_11b1e5df2ffd8627 File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.19041.508_none_429cdbca8a8ffa94 File
(RW-) C:\xCyclopedia File
\BaseNamedObjects__ComCatalogCache__ Section
\BaseNamedObjects\F932B6C7-3A20-46A0-B8A0-8894AA421973 Section
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\Sessions\1\BaseNamedObjects\UrlZonesSM_user Section
\Sessions\1\BaseNamedObjects\windows_shell_global_counters Section
\Sessions\1\BaseNamedObjects\windows_webcache_counters_{9B6AB5B3-91BC-4097-835C-EA2DEC95E9CC}_S-1-5-21-2047949552-857980807-821054962-504 Section
\Sessions\1\Windows\Theme2547664911 Section
\Windows\Theme3854699184 Section

Loaded Modules:

Path
C:\Program Files (x86)\Glary Utilities 5\SoftwareUpdate.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: Signature verified.
  • Serial: 0F05AE21CDC17B9F3CF09D7BFC659BA3
  • Thumbprint: 362EBB303E088105BDCC07D94E6B7875D30C0D06
  • Issuer: CN=DigiCert Assured ID Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US
  • Subject: CN=Glarysoft LTD, O=Glarysoft LTD, S=Beijing, C=CN

File Metadata

  • Original Filename:
  • Product Name: Glary Utilties
  • Company Name: Glarysoft Ltd
  • File Version: 5.0.0.51
  • Product Version: 5.0.0.1
  • Language: Chinese (Simplified, China)
  • Legal Copyright: Copyright (c) 2003-2020 Glarysoft Ltd
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/71
  • VirusTotal Link: https://www.virustotal.com/gui/file/e80dd3046ed07ed1e225f89208358f38d49a61f1fb1fb1d48efea105115a8a85/detection/

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\Glary Utilities 5\SoftwareUpdate.exe 96
C:\program files (x86)\Glary Utilities 5\SoftwareUpdate.exe 97

Possible Misuse

The following table contains possible examples of SoftwareUpdate.exe being misused. While SoftwareUpdate.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
malware-ioc dazzlespy - $HOME/Library/LaunchAgents/com.apple.softwareupdate.plist``{:.highlight .language-cmhg} © ESET 2014-2018
malware-ioc dazzlespy - $HOME/.local/softwareupdate``{:.highlight .language-cmhg} © ESET 2014-2018

MIT License. Copyright (c) 2020-2021 Strontic.