There are 46 versions of egui.exe in the wild, the latest version being 7.0.302.0 . egui.exe is run as a standard windows process with the logged in user's account privileges. The process displays a GUI (graphical user interface) which allows the user to interact with it as well as displays a notification icon in the taskbar. During installation, a run registry key for all users is added that will cause the program to run each time any user logs on to Windows. The average file size is about 3.1 MB. The file is a digitally signed and issued to ESET by VeriSign. During the process's lifecycle, the typical CPU resource utilization is less than 0.01%, the average private memory consumption is about 5.4 MB with the maximum memory reaching around 14.73 MB. Addionally, typically read and write I/O disk operations is about 11.73 KB per minute for reads and 342 Bytes per minute for writes.
ESET NOD32 Antivirus, commonly known as NOD32, is an antivirus software package from ESET. ESET's use of assembly language in its products contributes to their low system requirements and disk space utilization. ESET calls its scanning engine ThreatSense, and makes extensive use of generic signatures and heuristics.
(Note, the behaviors below are for all versions of egui.exe, select a unique version for details.)
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
Based on 40+ industry antivirus scanners, 5 of them detected the following malware.
Ireland installs about 14.20% of ESET Smart Security.