home

AntiLogger.exe

Zemana AntiLogger

Zemana Ltd.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘AntiLogger’.
Publisher:
Zemana Ltd.  (signed and verified)

Product:
Zemana AntiLogger

Description:
Zemana AntiLogger User Interface

Version:
1.8.2.336

MD5:
3378fcf9db746481733fa1fcdfc5f749

SHA-1:
2e65a49001d0751e55d485b2f4c6b02377c8695d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 5:00:29 AM UTC  (today)

File size:
2.2 MB (2,336,616 bytes)

Product version:
1.8.2.0

Copyright:
© Zemana Ltd. All rights reserved.

Trademarks:
AntiLogger(tm) is a trademark of Zemana Ltd.

Original file name:
AntiLogger.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\antilogger\antilogger.exe

Digital Signature
Signed by:
Zemana Ltd.

Authority:
VeriSign, Inc.

Valid from:
12/15/2009 1:00:00 AM

Valid to:
12/16/2010 12:59:59 AM

Subject:
CN=Zemana Ltd., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Zemana Ltd., L=Sofia, S=Lozenetz, C=BG

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
009328EAED0B63EC18CF9EF6A8623B40

File PE Metadata
Compilation timestamp:
1/8/2010 2:55:19 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.0

CTPH (ssdeep):
49152:HcIEyzu7vUdEjt6q64VDfm7Ap0BnqaRGnLgHidim:8IEyC7vUd2t6kJfYApIqaRGn9b

Entry address:
0x1000

Entry point:
68, 01, E0, AE, 00, E8, 01, 00, 00, 00, C3, C3, 47, 01, AF, 3B, E7, 3C, D7, 23, CF, 61, 41, F8, 44, EF, B5, 4B, 3A, 04, 4C, CC, 4A, 04, 3D, 38, B6, B6, 0D, 26, AB, 0F, B4, DD, BA, 21, 44, A1, 9A, 20, 31, 87, F1, BC, 06, E4, A3, 63, 2D, 8B, A2, A5, 7F, 96, 76, 38, D3, 59, 13, 87, FA, 7D, E3, 65, 15, B6, EE, 3A, 8B, 99, 23, 63, 99, E3, 8F, DD, 0C, 36, 80, E5, C9, 51, A4, B8, 22, 61, C7, 6B, 4E, 42, 64, F7, D9, 26, A9, E6, 7C, 9F, 8D, F2, C9, F2, 05, A3, 73, D0, DC, 1E, 37, 11, E7, B1, 78, 8C, 5A, BA, F9, 13...
 
[+]

Packer / compiler:
ASProtect v1.2x (New Strain)

Code size:
1.8 MB (1,925,120 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
AntiLogger

Command:
"C:\Program Files\antilogger\antilogger.exe" \minimized


Scan AntiLogger.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.