maxcomputercleaner_maintenance.exe

CONCEPTION SELECTION DISTRIBUTION INTERNATIONALE

The application maxcomputercleaner_maintenance.exe by CONCEPTION SELECTION DISTRIBUTION INTERNATIONALE has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. While running, it connects to the Internet address ip-184-168-221-61.ip.secureserver.net on port 80 using the HTTP protocol.
Publisher:

Version:
1.0.0.0

MD5:
342f8ee47de1d61db129a9ed70781491

SHA-1:
ae5a49324755178ab397c45340cdd25504bca683

SHA-256:
dde54cadc63a9fc92455477042e813575134dda132a2577f6008010866b78046

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/25/2024 1:02:11 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.CONCEPTI (M)
16.4.4.7

File size:
28.5 KB (29,160 bytes)

Product version:
1.0.0.0

Original file name:
noconf.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\maxcomputercleaner_v32.335\maxcomputercleaner_maintenance.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
12/16/2014 11:36:07 AM

Valid to:
12/17/2015 11:36:07 AM

Subject:
CN=CONCEPTION SELECTION DISTRIBUTION INTERNATIONALE, OU=Xhopever, O=CONCEPTION SELECTION DISTRIBUTION INTERNATIONALE, L=Paris, C=FR

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
112106B28CB2E4D8370E3EC157B3C5B3FF12

File PE Metadata
Compilation timestamp:
4/27/2015 1:04:53 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
768:bINwQx2rUvnX8nlPZXtJfUs5DdRHJoGyoZPF+aO8gZM:bINwQx2rUfszXHfz5DdRHyGyoZPF+aDF

Entry address:
0x76EE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
22 KB (22,528 bytes)

The executing file has been seen to make the following network communication in live environments.

TCP (HTTP):
Connects to ip-184-168-221-61.ip.secureserver.net  (184.168.221.61:80)

Remove maxcomputercleaner_maintenance.exe - Powered by Reason Core Security