home

microdem.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from www.usna.edu.
Description:
64 bit MICRODEM

Version:
2016.4.28.199

MD5:
35afa774d9f8010f58bfe83a2cea9724

SHA-1:
d548a7793d9840a09a1f70ac6fb12b7be7684345

SHA-256:
a003b7f5a1b6a53a839d39cfe63e4cb7385730448379e7927ede671b23a87774

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 4:26:25 AM UTC  (today)

File size:
25.1 MB (26,370,048 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\microdem.exe

File PE Metadata
Compilation timestamp:
4/28/2016 5:02:06 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
98304:XLWPvZ3blYjgAoeoARmjQqjlvHU7J6Y3OzSvQfWVj4C4x+QxOXuDmImSmSmJm2ms:XL8bCPoeoDjQqj507I6uuG/xNxOX/9

Entry address:
0x1420C70

Entry point:
55, 48, 83, EC, 20, 48, 8B, EC, 90, 48, 8D, 0D, C0, A9, FD, FF, E8, 2B, AF, BF, FE, 48, 8B, 05, 44, 37, 15, 00, 48, 8B, 0D, ED, 3E, 15, 00, 80, 39, 00, 0F, 95, C1, 88, 08, 48, 8B, 05, 56, 47, 15, 00, 48, 8B, 08, E8, E6, A6, EF, FE, 48, 8B, 05, 47, 47, 15, 00, 48, 8B, 08, 48, 8D, 15, 81, 00, 00, 00, E8, C0, 9E, EF, FE, 48, 8B, 05, 31, 47, 15, 00, 48, 8B, 00, 48, 8D, 88, C0, 00, 00, 00, 48, 8D, 15, 9C, 00, 00, 00, E8, D3, 38, BF, FE, 48, 8B, 05, 14, 47, 15, 00, 48, 8B, 08, 48, 8B, 15, 02, 6C, FA, FF, 4C, 8B...
 
[+]

Code size:
20.1 MB (21,102,080 bytes)

The file microdem.exe has been seen being distributed by the following URL.

http://www.usna.edu/Users/oceano/pguth/microdem/.../microdem.exe

Scan microdem.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.