home

mcsgdonoradder(run it).exe

MCSGMc

Stefan-PC\Stefan

Publisher:
Stefan-PC\Stefan  (signed and verified)

Product:
MCSGMc

Version:
1.0.0.0

MD5:
cdefcfa4f4540068dc6dfef0deab2fad

SHA-1:
6d5fb9d951d6cbd5a0fa9be52c461f1e05ad6d13

SHA-256:
2c40a718d7be11e37b2469419c3e66672deff1768a01fc6d2aeb7b6031d67c35

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/18/2024 1:42:44 PM UTC  (today)

Scan engine
Detection
Engine version

Fortinet FortiGate
MSIL/Agent.OFU!tr
5/7/2016

Panda Antivirus
Trj/Sharik.B
16.05.07.11

File size:
239.9 KB (245,696 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2015

Original file name:
MCSGDonorAdder.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\mcsgdonoradder2015 v1.0\mcsgdonoradder(run it).exe

Digital Signature
Signed by:
Stefan-PC\Stefan

Authority:
Stefan-PC\Stefan

Valid from:
6/5/2015 10:13:57 AM

Valid to:
6/4/2016 4:13:57 PM

Subject:
CN=Stefan-PC\Stefan

Issuer:
CN=Stefan-PC\Stefan

Serial number:
11C3D42095F33BA34F7AB4ABBA527015

File PE Metadata
Compilation timestamp:
6/6/2015 7:34:41 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:XXzZMXM3WMjp28pIjO/Ie7oYSXK3NtJ1yacfiU9mXn+iwpaH7VkSKw/2DYVC:XXIM3J/Tp3PJgacfZ2UskUC

Entry address:
0x392DE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.4685

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
221 KB (226,304 bytes)

Scan mcsgdonoradder(run it).exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.