» Ma CDThèque.exe
Overview
Analysis
File Details

Ma CDThèque.exe

Ma CDThèque

Soft Creation

The executable Ma CDThèque.exe has been detected as malware by 1 anti-virus scanner.

File name:

Ma CDThèque.exe

Publisher:

Soft Creation (signed and verified)

Product:

Ma CDThèque

Version:

1.0.0.0

MD5:

3d7329f840415086cb6cacdbac4e9e35

SHA-1:

25150d79113f67628a405739e0506736abb4ee92

SHA-256:

e27731c3e13aa761ac91547cc1018d2d8d108c750aea2e6f0df8ba9a98bd0f25

Scanner detections:

1 / 68

Status:

Malware

Analysis date:

11/23/2024 7:48:49 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP (M)

16.11.25.19

File size:

2.9 MB (3,065,640 bytes)

Product version:

1.0.0.0

Original file name:

Ma CDThèque.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\Program Files\macdtheque\ma cdthèque.exe

Digital Signature

Signed by:

Soft Creation

Authority:

GlobalSign nv-sa

Valid from:

6/24/2014 11:40:22 AM

Valid to:

6/24/2016 11:40:22 AM

Subject:

E=contact@soft-creation.fr, CN=Soft Creation, O=Soft Creation, L=Morsang sur Orge, C=FR

Issuer:

CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:

112151921342B11D59DBCE452F0B45857A46

File PE Metadata

Compilation timestamp:

10/2/2014 9:56:20 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

24576:bYIzt4jz4jQRdn+lCZDXoNY7bj/JeiOr3JigfX5c6FxyKkEsn0VKWQZQJkrXknrQ:bY8t2z2udn+l0oNYPS0OM

Entry address:

0x2D37EE

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 24, 05, 2D, 54, 00, 00, 00, 00, 02, 00, 00, 00, 1C, 01, 00, 00, 1C, 40, 2D, 00, 1C, 1C, 2D, 00, 52, 53, 44, 53, F3, E3, B4, 85, 6D, E4, 37, 45, 99, A3, 49, 8A, 22, C2, 4A, B0, 01, 00, 00, 00, 44, 3A, 5C, 50, 52, 4F, 4A, 45, 54, 20, 56, 42, 2E, 4E, 45, 54, 5C, 43, 44, 54, 48, 45, 51, 55, 45, 5C, 6F, 62, 6A, 5C, 78, 38, 36, 5C, 44, 65, 62, 75, 67, 5C, 4D, 61, 20, 43, 44, 54, 68, C3, A8, 71, 75, 65, 2E, 70, 64, 62, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

2.8 MB (2,955,264 bytes)

Remove Ma CDThèque.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.