SoftwareUpdate.exe

  • File Path: C:\program files (x86)\Glary Utilities 5\SoftwareUpdate.exe
  • Description: Glary Utilities Software Update

Screenshot

SoftwareUpdate.exe SoftwareUpdate.exe

Hashes

Type Hash
MD5 C3D34B8FCFABB16846B0E4C96E7C9BC1
SHA1 FACE80B11E8E5DF8B65C684236A8E19B6F127DC5
SHA256 8EB800C22D0FFCB512EFB7E0836201B823B5B4D69D44100FBEBF918A5E5759EA
SHA384 D0932BB3CACD9F34781CE7BFD62B2CB61C1E9BA469A995A28B7EBE88E44D813C5BFD5911614DB5B5A123CBF26D1905CD
SHA512 69480C4363AC57112F401646A477135B91A5D015CED23CA6EA323E5002D5DB0D484E58194E4C2BBED7F6A7AF2B5A6B0AB92621EAD0F73E0AE47B947CEBA48197
SSDEEP 12288:3KiWfsyRiBIgQJfckRH/k2qc8nzLxx4aRYOG2j8TDSZQCLyLgwxcu:3KnfsL8JfbTqZnzLxxJFtj8TDSZQCLyj

Runtime Data

Window Title:

Software Update

Open Handles:

Path Type
(R-D) C:\Windows\Fonts\StaticCache.dat File
(R-D) C:\Windows\System32\en-US\mswsock.dll.mui File
(R-D) C:\Windows\SysWOW64\en-US\user32.dll.mui File
(R-D) C:\Windows\WinSxS\x86_microsoft.windows.c..-controls.resources_6595b64144ccf1df_6.0.19041.1_en-us_130e63d987a738df\comctl32.dll.mui File
(RW-) C:\Program Files (x86)\Glary Utilities 5 File
(RW-) C:\Users\user\Documents File
(RW-) C:\Windows File
(RW-) C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9625_none_508ef7e4bcbbe589 File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.c..-controls.resources_6595b64144ccf1df_6.0.19041.1_en-us_130e63d987a738df File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2 File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.19041.450_none_4294d6e08a97344a File
\BaseNamedObjects__ComCatalogCache__ Section
\BaseNamedObjects\F932B6C7-3A20-46A0-B8A0-8894AA421973 Section
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\Sessions\1\BaseNamedObjects\UrlZonesSM_user Section
\Sessions\1\BaseNamedObjects\windows_shell_global_counters Section
\Sessions\1\BaseNamedObjects\windows_webcache_counters_{9B6AB5B3-91BC-4097-835C-EA2DEC95E9CC}_S-1-5-21-2047949552-857980807-821054962-504 Section
\Sessions\1\Windows\Theme4048709601 Section
\Windows\Theme603176458 Section

Loaded Modules:

Path
C:\program files (x86)\Glary Utilities 5\SoftwareUpdate.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: Signature verified.
  • Serial: 0F05AE21CDC17B9F3CF09D7BFC659BA3
  • Thumbprint: 362EBB303E088105BDCC07D94E6B7875D30C0D06
  • Issuer: CN=DigiCert Assured ID Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US
  • Subject: CN=Glarysoft LTD, O=Glarysoft LTD, S=Beijing, C=CN

File Metadata

  • Original Filename:
  • Product Name: Glary Utilties
  • Company Name: Glarysoft Ltd
  • File Version: 5.0.0.51
  • Product Version: 5.0.0.1
  • Language: Chinese (Simplified, China)
  • Legal Copyright: Copyright (c) 2003-2020 Glarysoft Ltd

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\Glary Utilities 5\SoftwareUpdate.exe 96
C:\Program Files (x86)\Glary Utilities 5\SoftwareUpdate.exe 97

Possible Misuse

The following table contains possible examples of SoftwareUpdate.exe being misused. While SoftwareUpdate.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
malware-ioc dazzlespy - $HOME/Library/LaunchAgents/com.apple.softwareupdate.plist``{:.highlight .language-cmhg} © ESET 2014-2018
malware-ioc dazzlespy - $HOME/.local/softwareupdate``{:.highlight .language-cmhg} © ESET 2014-2018

MIT License. Copyright (c) 2020-2021 Strontic.