home

crucialscan.exe

Micron Technology, Inc.

Publisher:
Micron Technology, Inc.  (signed and verified)

MD5:
c7d55ed4cd7cd5ea5602fee4563fca3f

SHA-1:
ba7c17a034a099d3bf1eefb06994222a97d7e98a

SHA-256:
593aa8340acdab56051a599f272baae553264ad3373e5692b9e454f9ba3f3f4b

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/24/2025 12:58:28 PM UTC  (today)

Scan engine
Detection
Engine version

XVirus List
Win.Detected
2.3.31

File size:
220.4 KB (225,672 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Windows\System32\crucialscan.exe

Digital Signature
Signed by:
Micron Technology, Inc.

Authority:
VeriSign, Inc.

Valid from:
11/15/2009 7:00:00 PM

Valid to:
11/16/2010 6:59:59 PM

Subject:
CN="Micron Technology, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Micron Technology, Inc.", L=Boise, S=Idaho, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
670DA610E5BC88161F493E9E59ACF2E2

File PE Metadata
Compilation timestamp:
3/12/2010 1:55:11 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
8.0

CTPH (ssdeep):
3072:iay9Ea8qHGP0ZAUGSM57rUwL3/ts62S6ZfaSEHKSff1SSkS:3apmP0KLSMph3262VCZHKa9VkS

Entry address:
0xEC9E

Entry point:
E8, B8, 7F, 00, 00, E9, 40, FE, FF, FF, 68, D0, DD, 40, 00, 64, FF, 35, 00, 00, 00, 00, 8B, 44, 24, 10, 89, 6C, 24, 10, 8D, 6C, 24, 10, 2B, E0, 53, 56, 57, A1, A0, 51, 42, 00, 31, 45, FC, 33, C5, 50, 89, 65, E8, FF, 75, F8, 8B, 45, FC, C7, 45, FC, FE, FF, FF, FF, 89, 45, F8, 8D, 45, F0, 64, A3, 00, 00, 00, 00, C3, 8B, 4D, F0, 64, 89, 0D, 00, 00, 00, 00, 59, 5F, 5F, 5E, 5B, 8B, E5, 5D, 51, C3, 6A, 24, 68, 40, 37, 42, 00, E8, 9B, FF, FF, FF, 33, C0, 88, 45, E7, C7, 45, CC, 01, 10, 00, 00, 89, 4D, D0, 8D, 4D...
 
[+]

Entropy:
6.4316

Code size:
116 KB (118,784 bytes)

The file crucialscan.exe has been seen being distributed by the following 2 URLs.

http://images.crucial.com/.../CrucialUKScan.exe

http://images.crucial.com/.../CrucialScan.exe

Scan crucialscan.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.