midn_ma.exe

McAfee Agent

McAfee, Inc.

This is a setup program which is used to install the application. The file has been seen being downloaded from intranet.usna.edu.
Publisher:
McAfee, Inc.

Product:
McAfee Agent

Description:
Framework Package Stub

Version:
4.8.0.1500

MD5:
8b7e8a13f19acfae41d191cccd071c12

SHA-1:
e85f8e637b5b8c935042d074775fda36f4e386b2

SHA-256:
eea4db7fbdfc2af8ea792c3acf83e7000b32dc628ce341cd1fbc22cc6d252a7b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 2:30:12 PM UTC  (today)

File size:
6.7 MB (7,008,086 bytes)

Product version:
4.8.0

Copyright:
Copyright© 2000-2013 McAfee, Inc. All Rights Reserved.

Original file name:
wstub32.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\midn_ma.exe

File PE Metadata
Compilation timestamp:
12/2/2013 11:11:45 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
196608:pHLBLeeLArU8owu+YR29J8Dm0q1FTIImNe:p1BArO6Lmm0GOe

Entry address:
0x8A00

Entry point:
E8, B2, 74, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 10, 53, 57, FF, 75, 10, 8D, 4D, F0, 33, DB, 33, FF, E8, 33, DA, FF, FF, 8B, 4D, 08, 3B, CB, 75, 20, E8, 79, 09, 00, 00, C7, 00, 16, 00, 00, 00, E8, 4E, 2D, 00, 00, 38, 5D, FC, 74, 07, 8B, 45, F8, 83, 60, 70, FD, 33, C0, EB, 66, 56, 8B, 75, F4, 39, 5E, 08, 75, 19, FF, 75, 0C, 51, E8, 54, E2, FF, FF, 59, 59, 38, 5D, FC, 74, 4C, 8B, 4D, F8, 83, 61, 70, FD, EB, 43, 8A, 11, 0F, B6, C2, F6, 44, 30, 1D, 04, 74, 1D, 41, 8A, 11, 84, D2, 74, 12, 0F...
 
[+]

Entropy:
7.9945  (probably packed)

Code size:
106.5 KB (109,056 bytes)

The file midn_ma.exe has been seen being distributed by the following URL.

Scan midn_ma.exe - Powered by Reason Core Security