home

m4e.masrh.masr.e10.by.mes__10924_i1781407132_il1958841.exe

Soft-Servis

The executable m4e.masrh.masr.e10.by.mes__10924_i1781407132_il1958841.exe has been detected as malware by 1 anti-virus scanner.
Publisher:
Soft-Servis  (signed and verified)

MD5:
7d93c94940b913d1ef973b406cc06e79

SHA-1:
e7a28b262be770549c23798b7920bccb0d8213e1

SHA-256:
e43a4e946f753784a4305667682a030e85c3129d1367abdb580251c0e770afe5

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
4/24/2025 3:37:24 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.2.23.0

File size:
4.7 MB (4,885,288 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\m4e.masrh.masr.e10.by.mes__10924_i1781407132_il1958841.exe

Digital Signature
Signed by:
Soft-Servis

Authority:
COMODO CA Limited

Valid from:
11/6/2015 2:00:00 AM

Valid to:
11/6/2016 1:59:59 AM

Subject:
CN="""Soft-Servis""", OU=IT, O="""Soft-Servis""", STREET=" kv. 1 prospekt 40-Richchya Zhovtnya Bud. Bud.105", L=Kiev, S=Kiev, PostalCode=03127, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
774EA230102FAB703CD370CED3712E3B

File PE Metadata
Compilation timestamp:
12/11/2015 2:17:28 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

Entry address:
0x3F753B

Entry point:
68, DF, 6B, 3A, 25, E8, F3, F8, FF, FF, 0F, 82, DD, AC, 00, 00, B8, 04, 00, 00, 00, 5E, E9, 79, 76, 00, 00, F7, C7, D8, 28, 53, 0C, 2B, C0, 89, 4E, 44, E9, DB, 07, 02, 00, E8, 29, 18, 53, 9D, A6, AF, 4D, C1, 9B, 41, 37, F6, 6E, D3, DD, 20, BB, E0, 76, 79, ED, 2C, DA, 6E, B4, 64, 68, 6C, D0, 47, A0, 21, 40, E2, 80, 93, 00, A0, 01, FF, 03, 75, 07, 4E, 0E, 0B, 1C, 22, 38, 0D, 70, AE, E0, 06, C1, D8, 82, 20, 05, AC, 0A, 8E, 14, AE, 29, F9, 53, 2F, A7, 88, 4D, B6, 9B, E9, 37, 93, 6E, B5, DD, 48, BB, C8, 76, 0A...
 
[+]

Entropy:
7.3525

Code size:
4.1 MB (4,276,736 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.