DUMETERSVC.EXE

DU Meter

Hagel Technologies Ltd.

It runs as a separate (within the context of its own process) windows Service named “DU Meter Service”.
Publisher:
Hagel Technologies Ltd.  (signed and verified)

Product:
DU Meter

Description:
DU Meter Service

Version:
5.02

MD5:
80c84d21197c4b3662355f530feecd8f

SHA-1:
c800bb12c1d132227aa07a63103dacb35b098d7f

SHA-256:
ab1951b85aa58748abf7e132fb82ee1328779b0f9c66bd07f480e33b52c55891

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/24/2024 11:38:34 AM UTC  (today)

Scan engine
Detection
Engine version

IKARUS anti.virus
Backdoor.Win32.Dokstormac
t3scan.2.1.6.0

File size:
1.3 MB (1,412,488 bytes)

Product version:
5.02

Copyright:
Copyright © 1997-2010 Hagel Technologies Ltd.

Original file name:
DUMETERSVC.EXE

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\du meter\dumetersvc.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
8/31/2010 3:00:00 AM

Valid to:
9/1/2011 2:59:59 AM

Subject:
CN=Hagel Technologies Ltd., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Hagel Technologies Ltd., L=Kelowna, S=British Columbia, C=CA

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
434BBA122A2F6C4731B8DEC69529A1C3

File PE Metadata
Compilation timestamp:
9/30/2010 1:29:44 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:95g+MJjD8BDxvIhWg+cMJSdS2yYlmz8mQaL81fwxyscRDOe7AUfZnjPv3d:9Gh8D120V+fwIRl0IZjHd

Entry address:
0x134880

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, 00, 02, 53, 00, E8, D7, 33, ED, FF, A1, 14, C1, 53, 00, 8B, 00, 8B, 10, FF, 52, 34, 8B, 0D, 70, BD, 53, 00, A1, 14, C1, 53, 00, 8B, 00, 8B, 15, 78, AF, 52, 00, 8B, 18, FF, 53, 30, A1, 14, C1, 53, 00, 8B, 00, 8B, 10, FF, 52, 38, 5B, E8, 2D, 09, ED, FF, 90, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1.2 MB (1,258,496 bytes)

Service
Display name:
DU Meter Service

Service name:
DUMeterSvc

Description:
DU Meter Service collects network traffic statistics

Type:
Win32OwnProcess

Depends on:
LanmanWorkstation


Scan DUMETERSVC.EXE - Powered by Reason Core Security