Analysis MD5: 278c64b644c224b28e601381103811a6
Analysis of the file classifies it as a class A (Safe). The file is safe to use. The trust index of this analysis is 81 % (high).
HotkeyUtility.exe is part of Hotkey Utility developed by Acer. This file is responsible for a hardware piece in your system. It offers additional configuration options and support for this device
|Filename:||HotkeyUtility.exe (Hotkey Utility)|
|First seen:||21 Apr, 2012|
|Last seen:||24 Jul, 2018|
|Last analysis:||24 Jul, 2018|
HotkeyUtility.exe Hotkey Utility
|File size:||627304 bytes (613 KB.)|
Signed and verified
This file is signed. The publisher is verified.
VeriSign Class 3 Code Signing 2009-2 CA
VeriSign Class 3 Public Primary Certification Authority (PCA3 G1 SHA1)
|Counter signers||VeriSign Time Stamping Services Signer - G2|
VeriSign Time Stamping Services CA
Thawte Timestamping CA
File entropy match: Encrypted
Parts of this file are encrypted. The reasons might be benign but it makes the analysis more difficult.Plain Data Text Code Compressed Encrypted Random
Microsoft Visual C++ 9.0 - Visual Studio 2008C++ is a general purpose programming language that is free-form and compiled. It is regarded as an intermediate-level language, as it comprises both high-level and low-level language features. It provides imperative, object-oriented and generic programming features
The determination of a file type is done with a signature or magic-numbers. Files are identified using by comparing the first set of bytes in the file header. Using this method type of files are recognised no matter the extension used. This information is useful to for example recognise executable files cloaked as images or movies.
Malicious code scan
No malicious code found
Agics makes een analysis of the source code of the file. We look for comparisons with known malicious source code. This is a good way to detect new malicious files which are in fact variations of existing, and known malicious files.
Fuzzy hash a.k.a. Context Triggered Piecewise Hashing
Context Triggered Piecewise Hashing, also called Fuzzy Hashing, can match inputs that have homologies. Such inputs have sequences of identical bytes in the same order, although bytes in between these sequences may be different in both content and length. Comparing a fuzzyhash is a good way to detect morphing malware. Malware which include random code in every copy to change its properties. Agics uses ssdeep to make create a fuzzyhash.
No match found
Online virus scanners
Not available on virusshare.comVirusShare.com is a repository of malware samples to provide security researchers, incident responders, forensic analysts, and the morbidly curious access to samples of live malicious code. Presence of the sample on this site indicates that the file is (Once considered) being malicious.
National Software Reference Library
Not on the nsrl listThe NSRL contains a collection of digital signatures of known, traceable software applications. There are application hash values in the hash set which may be considered malicious, i.e. steganography tools and hacking scripts.
Sandbox behaviour analysis:
The file is executed in a safe environment to track its behaviour. The behaviour analysis can help with detecting new malware which is not recognized by virusscanners yet. However it has a high chance on a false-positive, especially with installers, uninstallers and virusscanners.
No internet connection
Fingerprinting files can be done in various way. One way is to make a hash of the PE Imports. PE Imports are relative unique and this is a great way to find new variants of existing malware. The chance of false-positives is relative high. The resulting hash is often called an imphash.
Statistic analysis of the file
|High certificate trust|
|Deviates from other files with the same name (imitation)|
|The file does have a certificate|
|This is not a common file|
Neural network analysis
Analysis: Low risk
A neural network is a type of artificial intelligence. It recognized patterns nog clear for a human viewer. Our neural network is surprisingly accurate in recognizing dangerous files. The value below is the predicted chance the file is malicious.
Read feedback on this file from other users. Help other users by providing feedback yourself.