Should I block it?
90% of PCs block this file from running.
Possible reason:
Multiple malware detections
Relationships
salaty.exe
By www.ela-salaty.com
Version: | 1.3.1.3 |
MD5: | 03da9d7b455da5359902142987631b66 |
SHA1: | 0b7b2982ddc1030677e6e8de12c9f4d039021364 |
SHA256: | c369f91cef219db3245bf7c9f69a347fe860d7fa9123d407114e6453bf1e796a |
Warning 3 antivirus scanners has detected malware.
Overview
salaty.exe is malware that executes as a process with the local user's privileges usually within the context of Windows Explorer. During installation, it (or a shortcut) is added to the user's startup folder which is designed to automatically launch when the user logs into Windows. It is installed with a couple of know programs including Ela-Salaty and Ela-Salaty.
Details
File name: | salaty.exe |
Publisher: | www.ela-salaty.com |
Description: | Muslims Prayer Time Reminder. |
Typical file path: | C:\Program Files\ela-salaty\salaty.exe |
File version: | 1.3.1.3 |
Product version: | 1.0 |
Size: | 5.1 MB (5,349,888 bytes) |
Digital DNA |
PE subsystem: | Windows GUI |
File packed: | No |
.NET CLR: | No |
More details
Programs
The following programs will install this file
“Ela-Salaty is a new Arabic program helps you to remember times of prayer. Also helps you to mention of Allah and has many other advantages. The new on this program that it has a modern beautiful interface, Grapping advices and news from Internet by using RSS technology, support skins, downloadable Azan audios, control windows by add system commands before and after Azan. Ela-Salaty is quite different from any program of the same categor...”
Behaviors
User start menu folder
Shortcut pointer placed in '%appdata%\Microsoft\Windows\Start Menu'
Network connections
[TCP] 108.162.198.47:80
[TCP] ord08s08-in-f9.1e100.net (74.125.225.105:80)
[TCP] lis01s05-in-f6.1e100.net (173.194.41.198:80)
Malware detections
Based on 40+ industry antivirus scanners, 3 of them detected the following malware.
Antivirus engine | Engine version | Detection |
ByteHero |
1.0.0.1 |
Trojan.Win32.Heur.089 |
Trend Micro |
9.500.0.1008 |
PAK_Generic.001 |
Trend Micro HouseCall |
9.500.0.1008 |
PAK_Generic.001 |
Resource utilization
(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
CPU |
Total CPU: | 0.01134795% | |
Kernel CPU: | 0.00417654% | |
User CPU: | 0.00717141% | |
Kernel CPU time: | 11,394 ms/min | |
CPU cycles: | 9,816,087/sec | |
Context switches: | 404/sec | |
Memory |
Private memory: | 22.73 MB | |
Private (maximum): | 20.34 MB | |
Private (minimum): | 7.63 MB | |
Non-paged memory: | 22.73 MB | |
Virtual memory: | 120.12 MB | |
Virtual memory (peak): | 129.66 MB | |
Working set: | 11.87 MB | |
Working set (peak): | 23.66 MB | |
Page faults: | 120,425/min | |
I/O |
I/O read transfer: | 5.58 KB/sec | |
I/O read operations: | 4/sec | |
I/O write transfer: | 120 Bytes/sec | |
I/O write operations: | 1/sec | |
I/O other transfer: | 50 Bytes/sec | |
I/O other operations: | 6/sec | |
Resource allocations |
Threads: | 9 | |
Handles: | 284 | |
GUI GDI count: | 294 | |
GUI GDI peak: | 324 | |
GUI USER count: | 357 | |
GUI USER peak: | 366 | |
Process properties
Threads
Averages
Salaty.exe (main module) |
Total CPU: | 0.03755533% | |
Kernel CPU: | 0.02165844% | |
User CPU: | 0.01589689% | |
CPU cycles: | 6,281,181/sec | |
Context switches: | 127/sec | |
Memory: | 5.29 MB | |
QUARTZ.dll |
Total CPU: | 0.00064450% | |
Kernel CPU: | 0.00035860% | |
User CPU: | 0.00028590% | |
CPU cycles: | 16,138/sec | |
Memory: | 1.46 MB | |
ffdshow.ax |
Total CPU: | 0.00057220% | |
Kernel CPU: | 0.00057220% | |
User CPU: | 0.00000000% | |
CPU cycles: | 267,872/sec | |
Memory: | 3.93 MB | |
Common loaded modules
These are modules that are typiclaly loaded within the context of this process.
Distribution by Windows OS
OS version | distribution |
Windows 7 Professional |
50.00% |
|
Windows 7 Ultimate |
33.33% |
|
Microsoft Windows XP |
16.67% |
|
Distribution by country
Egypt installs about 100.00% of salaty.exe.
Distribution by PC manufacturer
PC Manufacturer | distribution |
Hewlett-Packard |
100.00% |
|