clientmonitor.exe

RecA

The executable clientmonitor.exe has been detected as malware by 1 anti-virus scanner.
Publisher:
RecA  (signed and verified)

MD5:
eb15f82d705e78ec32ade2f8e7e0051d

SHA-1:
5f3f282b8ef2865cb3061fa93648aa00e1f91b9d

SHA-256:
993d3ee3dd0d4d184b35a87ef266459a86c892c9b947d074cbafb9f845d048e1

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
12/26/2024 6:42:25 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
16.7.28.19

File size:
517.4 KB (529,856 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\windows\syswow64\clientmonitor.exe

Digital Signature
Signed by:

Authority:
RecA

Valid from:
7/2/2016 9:12:39 PM

Valid to:
7/3/2026 9:12:39 PM

Subject:
E=owner@reca.net, CN=www.reca.net, OU=Support Dept, O=RecA, L=Cologne, S=Sortil, C=DE

Issuer:
E=owner@reca.net, CN=www.reca.net, OU=Support Dept, O=RecA, L=Cologne, S=Sortil, C=DE

Serial number:
008FE7E51E617A60CF

File PE Metadata
Compilation timestamp:
7/6/2016 12:24:46 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:hbaKxU9sDJk+9q7vXRuFj8Fl06ouLLRXewZRFN0afl1d+XVWQE5zwMreyaEcTapR:hvxDL9q7XsVu3nNbfEQQEFsyXfKPTDnq

Entry address:
0x7E7AE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
500 KB (512,000 bytes)

Remove clientmonitor.exe - Powered by Reason Core Security