home

malware89

Free space and maintain privacy

Meicun Ge

The file malware89 by Meicun Ge has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Meicun Ge  (signed and verified)

Product:
Free space and maintain privacy

Version:
0.0.1.6

MD5:
15ddce6955da54f4e4cc92a8c0c5cec2

SHA-1:
b8a6216b2b9f1083b42d27bcb85361a7326984b0

SHA-256:
3b7dbc3000c6950743871803b15220b90391063a446cca76dd1f1d27bc8343f9

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/4/2024 6:06:24 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.MeicunGe (M)
16.1.13.20

File size:
363.2 KB (371,928 bytes)

Product version:
1.0.1.6

Copyright:
Copyright (C) 2014 Andrew Ziem

Language:
Language Neutral

Digital Signature
Signed by:
Meicun Ge

Authority:
Unizeto Technologies S.A.

Valid from:
9/8/2014 9:49:43 AM

Valid to:
9/8/2015 9:49:43 AM

Subject:
E=meicunge@gmail.com, CN="Open Source Developer, meicun ge", O=Meicun Ge, C=CN

Issuer:
CN=Certum Level III CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
4FC13D6220C629043A26F81B1CAD72D8

File PE Metadata
Compilation timestamp:
3/27/2015 1:54:59 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:8lkVmG0U3f4Pk9DLjEP1E0E8bCioEcXkZ8XGHEaCrRHA+btYOrfk5Q9flJUaqjT7:Oks4JEO0XCi208X2R4A6tYifd9zUaqb

Entry address:
0x8C89E

Entry point:
60, C7, 44, 24, 1C, FF, B6, 7B, 4F, 60, C7, 44, 24, 38, B7, AA, C4, 1E, 51, 88, 04, 24, 8D, 64, 24, 3C, E9, E4, ED, 02, 00, 83, C1, 01, 80, FF, E5, F5, 66, 0F, BA, E5, 04, F9, 84, E4, E8, 04, E0, 02, 00, 8D, 64, 24, 04, 0F, 82, 3C, D0, 02, 00, F9, 80, 7F, FF, 00, 9C, 89, 1C, 24, 9C, 8D, 64, 24, 08, 0F, 85, A7, 12, 00, 00, 0F, BB, CF, 66, D3, FF, 66, 0F, BC, F8, 8B, 7A, 24, F9, F8, 9C, F8, 01, C7, FF, 34, 24, 0F, B7, 0C, 4F, 83, EC, F8, 66, FF, C7, D3, DF, 66, 0F, BA, EF, 01, D1, D7, 8B, 7A, 1C, E8, 77, 2C...
 
[+]

Code size:
190.5 KB (195,072 bytes)

Remove malware89 - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.