home

MacroKeys.exe

MacroKeys

NewSoftwares.net Inc. SDN. BHD.

The application MacroKeys.exe by NewSoftwares.net SDN. BHD has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
NewSoftwares.net, Inc.  (signed by NewSoftwares.net Inc. SDN. BHD.)

Product:
MacroKeys

Version:
4,0,0,0

MD5:
e9ceb240fb3a2542beb3aeef52cfb62e

SHA-1:
d25cf7b5e2dbc52121303c795b4b5c0b6eb293d2

SHA-256:
bfebe60516448395432518ba290cd8fb96208847cbb0a41a2de65fc7d69675d3

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/27/2024 3:29:17 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.NewSoftw
17.2.3.3

File size:
5.2 MB (5,431,256 bytes)

Product version:
4,0,0,0

Copyright:
Copyright (2009) NewSoftwares.net,Inc.

Original file name:
MacroKeys.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\macro keys\macrokeys.exe

Digital Signature
Signed by:
NewSoftwares.net Inc. SDN. BHD.

Authority:
GlobalSign nv-sa

Valid from:
2/3/2009 10:53:54 AM

Valid to:
2/3/2012 10:53:54 AM

Subject:
E=president@newsoftwares.net, CN=NewSoftwares.net Inc. SDN. BHD., O=NewSoftwares.net Inc. SDN. BHD., C=MY

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000011F3BFCD88E

File PE Metadata
Compilation timestamp:
8/1/2009 11:16:30 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x546253

Entry point:
E8, 00, 00, 00, 00, 60, E8, 4F, 00, 00, 00, AE, E6, 97, 2D, 8B, 9D, B9, D2, 61, 86, 2E, 05, 08, AC, 24, 4F, 10, C4, EF, B1, 55, 08, 6D, E5, 61, F5, 37, D5, 14, DB, DA, 92, 0E, F5, 6F, 3C, B4, 6F, C7, 0C, D5, A4, 6C, 49, F6, 66, 5B, D3, 47, DE, D1, 09, 0F, 94, 1B, 8C, 47, DE, D1, 09, 0F, 94, 1B, 8C, E9, C9, 4B, 00, 00, E9, DD, 4B, 00, 00, E9, D8, 4B, 00, 00, E8, 5E, FB, FF, FF, 4E, DD, 00, 00, 43, 8F, 00, 00, 2C, A2, D5, 88, D3, EF, 41, C3, DC, 93, D4, BC, 3E, 36, 71, 30, 48, 16, 70, 33, C8, ED, 49, CF, 7D...
 
[+]

Entropy:
5.5119

Packer / compiler:
MoleBox v2.0

Remove MacroKeys.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.