home

mog.exe

Mx One Antivirus

Ldc

This is a setup program which is used to install the application. The file has been seen being downloaded from update.mxone.net.
Publisher:
Ldc

Product:
Mx One Antivirus

Version:
4.05

MD5:
cb1e8b5adb70af3d549dbd82637e0e84

SHA-1:
17014b151ba7ed73dd2710515002880fb27e4c12

SHA-256:
0e8e902d5342f8ec9d100dd41fa3e4adb65009df9bbaec12b358f9c2bd4830b5

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/14/2024 2:53:39 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
W32/Chir.B
7.11.30.172

File size:
369.5 KB (378,368 bytes)

Product version:
4.05

Copyright:
Red Mx ( Martin Malagon )

Trademarks:
http://www.LdcMx.info http://www.MxOne.net

Original file name:
mog.exe

File type:
Executable application (Win32 EXE)

Language:
Spanish (Spain, International Sort)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\mog.exe

File PE Metadata
Compilation timestamp:
11/3/2015 4:53:22 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6144:NXzp6azucFovlTesLILHDffcrdsQgdgxTjmquFE3IucByB78+0n6SJX7:tLzu0ovnILHzEdfTqFBByBI7J7

Entry address:
0x3BF8

Entry point:
B8, EC, 2E, 58, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, C9, 48, BA, A4, BA, 7C, F2, 5C, AC, 1A, A1, CA, 3E, AA, A9, DA, CD, 98, 1C, B1, F5, 68, 3F, 0A, 4E, 75, 4C, D5, FC, A6, A2, 02, 98, 5D, 04, 6A, 02, 58, 08, 93, EB, 3B, 12, 99, BD, D6, 94, 66, AB, 1E, ED, 05, E5, 54, 05, BA, 06, EC, 4F, CF, 1F, 31, 66, 45, F0, E5, 01, 74, EB, B9, 8F, E4, E8, 38, CA, B5, 0B, DA, DB, D9, 50, 42, 78, A4, 21, 42, 24, F5, F3, 3A, DE, A6, 2A...
 
[+]

Entropy:
7.9940

Packer / compiler:
PECompact v2

Code size:
1.5 MB (1,527,808 bytes)

The file mog.exe has been seen being distributed by the following URL.

http://update.mxone.net/mog.exe

Scan mog.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.